A public service announcement for anyone who, like me, uses an old Dell computer as the main machine: Dell has released a security patch for a security vulnerability affecting nearly 400 different computer models manufactured between 2009 and right now. That, uh, a lot of laptops.
The vulnerability was discovered by a security research firm SentinelLabs in the driver used by the Dell and Alienware firmware update utilities. The downside allows an attacker to access full kernel-level permissions in Windows. At Dell information page says that there is no evidence that the vulnerability has been exploited and that tthe attacker will need to have direct access to the computer to take advantage of the disadvantage. But this is possible through malware, phishing, or remote access privileges, say to someone who pretends to serve Dell customers.
Be sure to check Dell list on the affected computers if you think you meet the criteria. Cthe latest XPS 13 and 15 models are affected as they are Dell G-Series gaming laptops also have a list of mid-range Inspiron models from the years and even some workstation towers.
Dell is pushing for security updates through its update customers. The FAQ says he expects it by May 10. If you want to remove the affected the driver yourself, there are connection instructions for finding it both 32-bit and 64-bit versions of Windows.