New UEFI Firmware Vulnerabilities Impact Several Lenovo Notebook Models


On Tuesday, Lenovo, a manufacturer of consumer electronics, released updates to its UEFI firmware that address three security problems that affected over 70 product types.

“The vulnerabilities can be exploited to obtain arbitrary code execution in the early phases of the platform boot, potentially allowing the attackers to hijack the OS execution flow and disable several essential security mechanisms,” Slovak cybersecurity company ESET stated in a series of tweets. Read More…