Security researchers have detected four major security flaws in the BIOSConnect feature of Dell SupportAssisst, that allows threat actors to run code within the BIOS of impacted devices remotely.
The SupportAssist software comes preinstalled with most Dell devices running Windows operating system, while BIOSConnect provides the functionality of remote firmware update and OS recovery features.
The vulnerabilities discovered by Eclypsium researchers carry a high CVSS base score of 8.3/10 and allows privileged remote attackers to masquerade as Dell.com and take control of the target device’s boot process in order to break through security controls implemented at the operating system level.
“Such an attack would enable adversaries to control the device’s boot process and subvert the operating system and higher-layer security controls,” Eclypsium researchers said in a report that they shared with BleepingComputer.
Eclypsium said users will need to update the system BIOS/UEFI for all devices that were affected by the vulnerability. The researchers also suggest using an alternate method other than the SupportAssist’s BIOSConnect feature to apply BIOS updates.
Dell is providing BIOS/UEFI updates for affected systems and updates to affected executables on Dell.com.
For a full list of machines that are in need of this upgrade please read full article here https://www.bleepingcomputer.com/news/security/dell-supportassist-bugs-put-over-30-million-pcs-at-risk/?fbclid=IwAR3u_YL-GNszbptrDlpMG0hglNRhyPzgD-PRV6i1-w6FnZcS-jY9hIs6sHE
If you are unsure and require assistance with preforming the upgrade, please contact us immediately.