XPS 9710 - UEFI Boot Path Security - Vulnerability

The XPS 9710 UEFI (ver. 1.10.0) seems to be vulnerable. When an admin password is set and UEFI Boot Path Security is set to the default option Always Except Internal HDD is selected, one should not be able to boot an external device without providing the admin password.

If the internal drives are locked with a password, bypass the password prompt of the internal drives by pressing ESC and an externally connected USB drive will boot without providing a password.