Dell has patched five flaws in a vulnerable firmware update driver that has shipped in millions of laptops, tablets and desktops since 2009. The vulnerabilities have been assigned a single CVE, CVE-2021-21551, and they have a CVSS score of 8.8.8. The flaws are not remotely exploitable, but exploiting them requires local authenticated access. The driver file is located in “C:WindowsTemp,” which is also a bug itself and opens the door to other issues.”]
Source: https://www.cuinfosecurity.com/millions-dell-devices-vulnerable-to-update-driver-flaw-a-16522