HOW ATTACKERS ABUSE THE DELL BIOSCONNECT AND HTTPS BOOT VULNERABILITIES TO COMPROMISE THE DELL COMPUTERS?
The vulnerabilities have given a cumulative CVSS score of 8.3 (High) because adversaries can control the device’s boot process and subvert the operating system and higher-layer security controls using these attacks. According to the research, these vulnerabilities affect 129 models (30 million devices across the globe), including consumer and business laptops, desktops, and tablets.
* What is BIOS Connect?
* Summary Of The Dell BIOSConnect And HTTPS Boot Vulnerabilities:
* CVE-2021-21571: Insecure TLS Connection From BIOS to Dell
* CVE-2021-21572, CVE-2021-21573, and CVE-2021-21574: Buffer Overflow Vulnerabilities Enable Arbitrary Code Execution
Table of Contents :
How Attackers Use Rhe Dell BIOSConnect And HTTPS Boot Vulnerabilities To Compromise The Device?