If you own a Dell laptop or desktop then there’s a very good chance your machine is vulnerable to attack simply by visiting a malicious website. The good news is, Dell has released a patch to close the security hole.
Here’s the remote code execution in action as recorded by Demirkapi:
Dell uses SupportAssist to pro-actively check the health of your hardware and software and then automatically updates each system as necessary. As you’ve probably guessed, it’s a piece of software that gets pre-installed on most new Dell systems, meaning there’s a lot of users out there potentially vulnerable to this attack.
Dell has known about the vulnerability since Oct. 26 last year and a patched version of SupportAssist (v22.214.171.124) is now available which closes the security hole. If you own a Dell which has SupportAssist installed, download and install the new version as soon as possible to protect your system.