Dell firmware bug puts millions of computers at risk mybroadband.co.za - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from mybroadband.co.za Daily Mail and Mail on Sunday newspapers.
Five high-severity flaws fixed in Dell Windows firmware update driver Wednesday, 05 May 2021 07:42 Five high-severity flaws fixed in Dell Windows firmware update driver Featured Image by mohamed Hassan from Pixabay
Computer manufacturer Dell has released a security update to fix five high-severity vulnerabilities in its firmware update driver which affect the company s desktops, laptops, notebooks and tablets that run Windows.
The vulnerabilities were found by security shop SentinelLabs, which said in
a blog post that they could be used for local escalation to kernel mode.
The affected drivers are present in millions of Windows devices that have been released by Dell since 2009, SentinelOne, the research unit of the security firm, said in the post which was issued on Tuesday.
Hundreds of millions of Dell devices at risk as fresh flaws surface
Hundreds of millions of Dell devices at risk as fresh flaws surface
Dell has released hundreds of millions of Windows devices worldwide which contain the vulnerable driver. Credit: Dreamstime
Five high severity flaws in Dell’s firmware update driver impacting desktops, laptops, notebooks and tablets have been uncovered by security researchers at SentinelOne’s SentinelLabs.
Since 2009, Dell has released hundreds of millions of Windows devices worldwide which contain the vulnerable driver, the cyber security firm said in a statement.
The flaws, discovered by SentinelOne senior security researcher Kasif Dekel, were reported to Dell on 1 December last year and are tracked as CVE-2021-21551, marked with CVSS Score 8.8.
Dell Patches Highly Vulnerable Firmware Update Driver Impacting Hundreds and Millions of Laptops, Desktops
The issues exist in Dell’s firmware update driver version 2.3 (dbutil 2 3.sys) module that is not just limited to Dell machines but is also some Alienware models. By Jagmeet Singh | Updated: 5 May 2021 12:01 IST
Dell users are highly recommended to install the patch on their machines
Highlights
SentinelLabs discovered and reported the flaws in December 2020
Dell has released the patch for over 380 laptop and desktop models
Dell has released a security patch for its firmware update driver module that carried as many as five high-severity flaws that are impacting potentially hundreds and millions of its desktops, laptops, notebooks, and tablets based on Windows. The firmware update driver module in question has been in use since at least 2009 and is available even on the latest Dell machines. This means that the serious vulnerabilities ha
Dell issues critical security update to patch serious driver flaws on hundreds of millions of systems
Dell has patched a recently discovered series of security flaws in a driver installed on hundreds of millions of computers. Tracked as CVE-2021-21551, no fewer than five high severity vulnerabilities were found to exist in Dell s dbutil 2 3.sys firmware update driver since 2009.
The flawed DBUtil driver is installed on consumer and enterprise desktops, laptops and tablets around the world. If exploited, the vulnerabilities could be used to escalate privileges from a non-administrator user to kernel mode privileges . The problem only affected Windows systems, not those running Linux.