'Security researchers have found four major security vulnerabilities
in the BIOSConnect feature of Dell SupportAssist, allowing attackers
to remotely execute code within the BIOS of impacted devices.
According to Dell's website, the SupportAssist software is
'preinstalled on most Dell devices running Windows operating system,'
while BIOSConnect provides remote firmware update and OS recovery
features. The chain of flaws discovered by Eclypsium researchers comes
with a CVSS base score of 8.3/10 and enables privileged remote
attackers to impersonate Dell.com
and take control of the target
device's boot process to break OS-level security controls. "Such an
attack would enable adversaries to control the device's boot process
and subvert the operating system and higher-layer security controls,"
Eclypsium researchers explain in a report shared in advance with
BleepingComputer. "The issue affects 129 Dell models of consumer and
business laptops, desktops, and tablets, including devices protected
by Secure Boot and Dell Secured-core PCs," with roughly 30 million
individual devices exposed to attacks.'
-- source: https://it.slashdot.org/story/21/06/25/176208
Dept. of Computer Science
University of Waikato, NZ
+64 (7) 577-5304