Sunday, June 13, 2021
Home Computers Bugs: Dell issues security patch for millions of its computers

Bugs: Dell issues security patch for millions of its computers

As these bugs have remained present and undisclosed for 12 years in Dell devices, these high-severity vulnerabilities affect hundreds of millions of devices and millions of users worldwide

After the cyber-security research firm SentinelLabs found five serious bugs in Dell and Alienware software that allow hackers to gain full permissions in Windows on the devices, Dell has issued a security patch for millions of its computers dating back to 2009.

As these bugs have remained present and undisclosed for 12 years in Dell devices, these high-severity vulnerabilities affect hundreds of millions of devices and millions of users worldwide.

“The impact this could have on users and enterprises that fail to patch is far reaching and significant,” said Kasif Dekel, Senior Security Researcher at SentinelLabs.

While the cyber-security firm has not seen any indicators of these bugs being exploited in the wild up till now, with hundreds of millions of enterprises and users currently vulnerable, “it is inevitable that attackers will seek out those that do not take the appropriate action”.

Including some of the latest XPS 13 and 15 models, and the G3, G5, and G7 gaming laptops, the list of affected Dell computers has over 380 models.

Also, almost 200 affected computers have been listed by Dell that it considers to be no longer receiving service.

Both Dell and SentinelLabs, however, stressed they haven’t seen evidence of the vulnerability being exploited by hackers.

The high severity bugs could allow any user on the computer, even without privileges, to escalate their privileges and run code in kernel mode.

“Among the obvious abuses of such vulnerabilities are that they could be used to bypass security products”, said the report.

An attacker with access to an organisation’s network may also gain access to execute code on unpatched Dell systems and use these bugs to gain local elevation of privilege. To pivot to the broader network, like lateral movement, attackers can then leverage other techniques.

“These multiple high-severity vulnerabilities in Dell software could allow attackers to escalate privileges from a non-administrator user to kernel mode privileges”, the report noted.

Also read:Robots becoming an important part of the marketing industry

Do Follow: CIO News LinkedIn Account | CIO News Facebook | CIO News Youtube | CIO News Twitter

khushbu
Khushbu Sonihttps://www.cionews.co.in
Chief Editor - CIO News | Founder & CEO - Mercadeo

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -WhatsApp Image 2020 11 10 at 1.52.58 PMWhatsApp Image 2020 11 10 at 1.52.58 PMWhatsApp Image 2020 11 10 at 1.52.58 PMWhatsApp Image 2020 11 10 at 1.52.58 PM

Most Popular

Driverless passenger car technology to be developed by Huawei by 2025

Expected to bring a sea change to the transportation industry, works on self-driving vehicle systems or driverless passenger car technology are...

Machine learning and mathematics notwithstanding, India lags in data skills

Despite having high proficiency in machine learning and mathematics, India ranks 67th globally, with 38 per cent proficiency and mid-rankings globally...

Cyber-security: India, Australia to broad-base cooperation

Cyber-security: India, Australia to broad-base cooperation

Cloud modernisation journey: Cognizant forms a unit with Google Cloud

Cloud modernisation journey: Cognizant forms a unit with Google Cloud

Recent Comments