Acer Firmware Flaw Lets Attackers Bypass Key Security Feature

The flaw impacts five of the company’s laptop models and could allow an attacker to disable a device’s Secure Boot settings, leading to malware execution and disarming of security measures. ESET notified Acer of the flaw, and the company is currently investigating and taking the necessary actions to ensure the security of its consumers. Security researchers at ESET have identified a flaw tracked as CVE-2022-4020 impacting the Acer firmware.