Head Topics

Lenovo fixes trio of UEFI vulnerabilities

United States News News

Lenovo fixes trio of UEFI vulnerabilities
United States Latest News,United States Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 46 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 22%
  • Publisher: 61%

Lenovo issues firmware updates after UEFI vulnerabilities disclosed

Security researchers have spotted fresh flaws in Lenovo laptops just months after the vendor patched a bunch of its products.

The PC maker has now fixed the trio of bugs, which were flagged up by ESET this week. More than 70 models were impacted by this latest issue, including a number of ThinkBook devices. The vulnerabilities reported were buffer overflows in the UEFI firmware.the ESET Research team,"can be exploited to achieve arbitrary code execution in the early phases of the platform boot, possibly allowing the attackers to hijack the OS execution flow and disable some important security features.

"It's a typical UEFI 'double GetVariable' vulnerability," the team added, before giving a hat tip to efiXplorer.on the matter this week: the CVE identifiers are CVE-2022-1890, CVE-2022-1891, CVE-2022-1892. All are related to buffer overflows and carry the risk that an attacker with local privileges will be able to execute arbitrary code. Their severity was rated as medium.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

United States Latest News, United States Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

AWS squashes authentication bugs in Kubernetes serviceAWS squashes authentication bugs in Kubernetes serviceAmazon squashes years-old authentication bugs in AWS Kubernetes service
Read more »

Trio charged with conspiracy over stolen Hotel California and other Eagles manuscripts worth more than $1mTrio charged with conspiracy over stolen Hotel California and other Eagles manuscripts worth more than $1mThe three men allegedly attempted to sell the Eagles' Hotel California manuscripts and lied to auction houses, potential buyers and law enforcement about their origin in a 'years-long campaign' to prevent founding member Don Henley from recovering them.
Read more »

Nils-Udo and Ruinart’s ode to biodiversity in rural ReimsNils-Udo and Ruinart’s ode to biodiversity in rural ReimsFor the latest project in Ruinart’s 300th-anniversary countdown, land art pioneer Nils-Udo has unveiled HABITATS, a trio of ephemeral, organic nests that dapple the champagne maison’s Reims vin...
Read more »

Turkey teeth: Are cut-price reality TV teeth worth it?Turkey teeth: Are cut-price reality TV teeth worth it?UK dentists are treating patients with complications after travelling abroad for cheap crowns.
Read more »

Fall Guys Head Turner achievement now unlockable for all playersFall Guys Head Turner achievement now unlockable for all playersFall Guys developer Mediatonic has commented on the partly discontinued/unobtainable Head Turner achievement, saying it has plans to make the achievement easier to unlock.
Read more »

Microsoft's Patch Tuesday fixes one bug under active exploitMicrosoft's Patch Tuesday fixes one bug under active exploitMicrosoft's July Patch Tuesday fixes actively exploited bug
Read more »



Render Time: 2025-03-05 05:18:09