A set of firmware vulnerabilities affecting 100+ Dell laptop models widely used in government settings and by the cybersecurity industry could allow attackers to achieve persistent access even across Windows reinstalls, Cisco Talos researchers have discovered. About the vulnerabilities Most of the flaws reside in the firmware for ControlVault3 and ControlVault3+, which are hardware security components that store passwords, biometric templates, and security codes. The lists includes: Two out-of-bounds vulnerabilities (CVE-2025-24311, CVE-2025-25050) An arbitrary free … More
The post Millions of Dell laptops could be persistently backdoored in ReVault attacks appeared first on Help Net Security.
This article has been indexed from Help Net Security
Read the original article: