Dell Control Vault ReVault firmware memory corruption flaw
Vulnerability
Summary
Hide ▲
Show ▼
Researchers disclosed ReVault, a set of five CVEs in Dell Control Vault firmware that could enable code execution, secret-key extraction, and permanent firmware modification on millions of Dell Latitude and Precision laptops. The flaw chain relies on undocumented APIs that let a local user send commands to the control board, and Dell and Broadcom have already pushed fixes through Windows updates. The issue matters because the affected firmware sits beneath the operating system and can persist even after a Windows reinstall.
Related Happenings
Microsoft BitLocker hardware-accelerated rollout in Windows 11
Security Tool/Service
First: 23.12.2025 22:03
Last: 23.12.2025 22:03
Sources 1
About this happening:
Microsoft is rolling out **hardware-accelerated BitLocker** in **Windows 11**, improving **encryption performance** and **key protection** on supported devices. The new mode offlo...
Microsoft BitLocker hardware-accelerated rollout in Windows 11
Security Tool/ServiceAbout this happening: Microsoft is rolling out **hardware-accelerated BitLocker** in **Windows 11**, improving **encryption performance** and **key protection** on supported devices. The new mode offlo...
Baidu Antivirus driver security-process termination flaw actively exploited (CVE-2024-51324)
Vulnerability
First: 09.12.2025 18:00
Last: 09.12.2025 18:00
Sources 1
About this happening:
Researchers confirmed **active exploitation** of **CVE-2024-51324** in a **Baidu Antivirus driver**, allowing attackers to terminate security processes and weaken endpoint defense...
Baidu Antivirus driver security-process termination flaw actively exploited (CVE-2024-51324)
VulnerabilityAbout this happening: Researchers confirmed **active exploitation** of **CVE-2024-51324** in a **Baidu Antivirus driver**, allowing attackers to terminate security processes and weaken endpoint defense...
Microsoft Windows 11 Quick Machine Recovery and Smart App Control update for Insider Build 26220.7070
Security Tool/Service
First: 07.11.2025 21:46
Last: 07.11.2025 21:46
Sources 1
About this happening:
Microsoft is rolling out a faster **Quick Machine Recovery (QMR)** scan and a new **Smart App Control (SAC)** toggle path for **Windows 11**, changing recovery and app-control beh...
Microsoft Windows 11 Quick Machine Recovery and Smart App Control update for Insider Build 26220.7070
Security Tool/ServiceAbout this happening: Microsoft is rolling out a faster **Quick Machine Recovery (QMR)** scan and a new **Smart App Control (SAC)** toggle path for **Windows 11**, changing recovery and app-control beh...
Microsoft Windows Recovery Environment USB input disruption after KB5066835
Service Disruption
First: 20.10.2025 22:06
Last: 20.10.2025 22:06
Sources 1
About this happening:
The **Windows Recovery Environment (WinRE)** is disrupted after **KB5066835** installed on **October 14, 2025** disables **USB keyboards and mice** inside recovery mode. The failu...
Microsoft Windows Recovery Environment USB input disruption after KB5066835
Service DisruptionAbout this happening: The **Windows Recovery Environment (WinRE)** is disrupted after **KB5066835** installed on **October 14, 2025** disables **USB keyboards and mice** inside recovery mode. The failu...
Windows Agere Modem driver active zero-day (CVE-2025-24990)
Vulnerability
First: 15.10.2025 01:57
Last: 15.10.2025 01:57
Sources 1
About this happening:
**CVE-2025-24990** is an **actively exploited zero-day** in the **Agere Modem** driver bundled with **Windows** for years, and Microsoft responded by **removing the vulnerable dri...
Windows Agere Modem driver active zero-day (CVE-2025-24990)
VulnerabilityAbout this happening: **CVE-2025-24990** is an **actively exploited zero-day** in the **Agere Modem** driver bundled with **Windows** for years, and Microsoft responded by **removing the vulnerable dri...
Timeline
-
22.08.2025 23:21 1 articles · 9mo ago
Black Hat disclosure of ReVault in Dell Control Vault
Initial DisclosureAt Black Hat USA 2025 in Las Vegas, Cisco Talos researcher Philippe Laulheret described ReVault, a set of five CVEs in Dell Control Vault firmware affecting millions of Dell business laptops, including Latitude and Precision systems. He said undocumented user APIs let a local user communicate with the control board and send commands to it.
Show sources
- ReVault Flaw Exposed Millions of Dell Laptops to Malicious Domination — www.darkreading.com — 22.08.2025 23:21