What’s new: Researchers have identified multiple vulnerabilities in Dell’s ControlVault3 firmware, affecting over 100 laptop models. These vulnerabilities, termed ReVault, could allow attackers to bypass Windows login, extract cryptographic keys, and maintain access even after OS reinstalls by embedding undetectable malware in the firmware. The vulnerabilities include CVE-2025-25050, CVE-2025-25215, CVE-2025-24922, CVE-2025-24311, and CVE-2025-24919, all with high CVSS scores, indicating critical security risks.
Who’s affected
More than 100 models of Dell laptops utilizing Broadcom BCM5820X series chips are impacted. Industries that rely on heightened security measures, such as those using smart card or NFC readers, are particularly at risk.
What to do
- Apply the fixes provided by Dell for the identified vulnerabilities.
- Disable ControlVault services if not using peripherals like fingerprint readers or smart card readers.
- Turn off fingerprint login in high-risk situations.
