Four separate security bugs would give attackers almost complete control and persistence over targeted devices, researchers say. The bugs affect 129 models of laptops, tablet and desktops, including enterprise and consumer devices, that are protected by Secure Boot. The issues affect the BIOSConnect feature within Dell SupportAssist (a technical support solution that comes preinstalled on most Windows-based Dell machines). The issue is that the TLS connection used to connect BIOS to the backend servers will accept any valid wildcard certificate issued by any of the built-in Certificate Authorities.
Source: https://threatpost.com/dell-bios-attacks-rce/167195/