Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models

What’s new: Researchers have identified multiple vulnerabilities in Dell’s ControlVault3 firmware, collectively known as the ReVault attack. These flaws could allow attackers to bypass Windows login, extract cryptographic keys, and maintain access to compromised systems even after an OS reinstall. The vulnerabilities affect over 100 Dell laptop models using Broadcom BCM5820X series chips. There is currently no evidence of exploitation in the wild.

Who’s affected

More than 100 models of Dell laptops utilizing Broadcom BCM5820X series chips are impacted by the ReVault vulnerabilities.

What to do

• Apply the fixes provided by Dell for the identified vulnerabilities.
• Disable ControlVault services if peripherals like fingerprint readers, smart card readers, and NFC readers are not in use.
• Turn off fingerprint login in high-risk situations.

Sources

• The Hacker News