A China-related attacker has exploited the vendor flaw since mid-2024, allowing it to move laterally, maintain persistent access, and deploy malware.
Source: https://www.darkreading.com/application-security/dells-hard-coded-flaw-a-nation-state-goldmine