On 24th of June 2021, Dell released a client platform security update for multiple vulnerabilities in the BIOSConnect and HTTPS Boot features as part of the Dell Client BIOS. The chain of vulnerabilities has a cumulative CVSS score of 8.3 (High) because it allows a privileged network adversary to impersonate “dell.com” and gain arbitrary code execution at the BIOS/UEFI level of the affected device. This would enable adversaries to control the device’s boot process and subvert the operating system and higher-layer security controls.
Read More
The post Critical Vulnerability in DELL BIOSConnect (CERT-EU Security Advisory 2021-031) appeared first on Malware Devil.
https://malwaredevil.com/2021/06/29/critical-vulnerability-in-dell-biosconnect-cert-eu-security-advisory-2021-031/?utm_source=rss&utm_medium=rss&utm_campaign=critical-vulnerability-in-dell-biosconnect-cert-eu-security-advisory-2021-031
No comments:
Post a Comment