Some of Our Sources
- BoingBoing
- Mashable
- Web Designer Wall
- Smashing Apps
- FanExtra - PSD
- Line 25
- CSS Tricks
- Spyre Studios
- Dev To
- Hashedout
Help Webnuz
Referal links:
June 25, 2021 05:24 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/QWx1ZTzXQLI/dell-supportassist-bugs-put-over-30-million-pcs-at-risk
Dell SupportAssist Bugs Put Over 30 Million PCs At Risk
AmiMoJo writes: Security researchers have found four major security vulnerabilities in the BIOSConnect feature of Dell SupportAssist, allowing attackers to remotely execute code within the BIOS of impacted devices. According to Dell's website, the SupportAssist software is 'preinstalled on most Dell devices running Windows operating system,' while BIOSConnect provides remote firmware update and OS recovery features. The chain of flaws discovered by Eclypsium researchers comes with a CVSS base score of 8.3/10 and enables privileged remote attackers to impersonate Dell.com and take control of the target device's boot process to break OS-level security controls. "Such an attack would enable adversaries to control the device's boot process and subvert the operating system and higher-layer security controls," Eclypsium researchers explain in a report shared in advance with BleepingComputer. "The issue affects 129 Dell models of consumer and business laptops, desktops, and tablets, including devices protected by Secure Boot and Dell Secured-core PCs," with roughly 30 million individual devices exposed to attacks.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/QWx1ZTzXQLI/dell-supportassist-bugs-put-over-30-million-pcs-at-risk
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot