U.S. markets closed
  • S&P 500

    4,166.45
    -55.41 (-1.31%)
     
  • Dow 30

    33,290.08
    -533.37 (-1.58%)
     
  • Nasdaq

    14,030.38
    -130.97 (-0.92%)
     
  • Russell 2000

    2,237.75
    -49.71 (-2.17%)
     
  • Crude Oil

    71.50
    +0.46 (+0.65%)
     
  • Gold

    1,763.90
    -10.90 (-0.61%)
     
  • Silver

    25.84
    -0.01 (-0.04%)
     
  • EUR/USD

    1.1865
    -0.0045 (-0.38%)
     
  • 10-Yr Bond

    1.4500
    -0.0610 (-4.04%)
     
  • GBP/USD

    1.3809
    -0.0115 (-0.83%)
     
  • USD/JPY

    110.1500
    -0.0810 (-0.07%)
     
  • BTC-USD

    35,592.52
    -578.41 (-1.60%)
     
  • CMC Crypto 200

    888.52
    -51.42 (-5.47%)
     
  • FTSE 100

    7,017.47
    -135.96 (-1.90%)
     
  • Nikkei 225

    28,964.08
    -54.25 (-0.19%)
     

Dell driver vulnerability affects hundreds of millions of PCs

·Associate Editor
·1 min read

Dell has been releasing a firmware update driver since 2009 that contains "five high severity flaws," according to security researchers at Sentinel Labs. The issue could affect hundreds of millions of PC, but the PC maker has now addressed the issue with a security patch, according to a Dell security advisory update

The flaw (in a file called DBUtil) is actually a connection of five vulnerabilities, collectively tracked as CVE-2021-21551. Four of the flaws lead to privilege escalation and one leads to denial of service. Some 380 models are affected, ranging from desktops to the latest Alienware and Dell laptops. If you own a Dell computer, even one no longer being supported, there's a good chance that it's on the list. 

There's no evidence to date of the vulnerability being exploited in the wild. According to Dell's FAQ, an attacker would need local access to your machine to exploit the hack or trick the user via phishing or other means. On top of that, it would only affect the PC if you've updated the firmware, as the driver in question isn't preloaded on PCs. 

Sentinel Labs researchers have provided technical information about the flaw but are holding back details on exploitation to give users time to patch. If you think your PC might be affected, follow Dell's guide to address the vulnerability here