Millions of Dell computers have a serious security flaw – update now!

Dell has just released a new security alert with the identifier DSA-2025-053, related to a series of serious vulnerabilities affecting millions of Dell laptop models in use worldwide. These vulnerabilities mainly appear on models in the Precision and Latitude product lines - which are commonly used in both business and personal environments.

The analysis results show that the cause comes from a hardware vulnerability on the Broadcom BCM5820X chip line, specifically in the ControlVault3 security system - a mechanism for storing sensitive information (passwords, biometric data.) right in the firmware. Dell said that these vulnerabilities can allow attackers to perform a series of dangerous actions including:

1. Data Leak
2. Overwrite memory beyond allowed range
3. Remote code execution
4. Improper memory release

A total of five CVEs have been published, all with a CVSS score above 8.0 – a 'High' rating:

1. CVE-2025-24311
2. CVE-2025-25215
3. CVE-2025-24922
4. CVE-2025-25050
5. CVE-2025-24919

Dell has released a patch for the ControlVault3 driver and firmware, with detailed instructions on the DSA-2025-053 security advisory page.

According to the company, internal customers were notified on June 13, but the patch is only now available to the public. There have been no known attacks exploiting this vulnerability, but Dell recommends that users update as soon as possible to ensure system security.

Micah Soto

Update 06 August 2025