May 28, 2023

Dell pushing out a massive number of updates with more than one hundred models impacted by newly-disclosed BIOS/UEFI vulnerabilities.

Eclypsium has discovered multiple vulnerabilities around Dell’s “BIOSConnect” feature within their BIOS/UEFI. These vulnerabilities could lead to a privileged network adversary impersonating Dell.com and gaining arbitrary code execution support at the BIOS/UEFI level. Some 128 different Dell models across their consumer and business devices are believed to be impacted.

This pre-boot remote execution code discovery can happen even on systems with Secure Boot enabled and other features.

Dell has been publishing updated BIOS/UEFI for not only their Windows customers but also posting the new firmware to LVFS so it can be deployed quickly on Linux. Those with Dell desktops and laptops should run sudo fwupdmgr update as soon as possible

Tags:

Leave a Reply

Related Post

Windows 11 Mandates TPM

Windows 11 Mandates TPM

June 26, 2021
Mosaic Regressor ! Uefi rootkit in to lime light

Mosaic Regressor ! Uefi rootkit in to lime light

October 7, 2020

You may have missed

Zyxel Patches Critical Buffer Overflow Vulnerability

Zyxel Patches Critical Buffer Overflow Vulnerability

May 27, 2023
Apria Data Breach affects 2 million customers

Apria Data Breach affects 2 million customers

May 27, 2023
CosmicEnergy Malware Shutting Electric grid

CosmicEnergy Malware Shutting Electric grid

May 27, 2023
Operation Magalenha from Brazil

Operation Magalenha from Brazil

May 27, 2023
Buhti Ransomware Dissection

Buhti Ransomware Dissection

May 26, 2023
Volt Typhoon – Chinese Threat Actor Targetting US Infra

Volt Typhoon – Chinese Threat Actor Targetting US Infra

May 25, 2023
%d bloggers like this: