An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code. CreditsLenovo thanks Yngweijw for reporting this issue.Referenceshttps://support.lenovo.com/us/en/product_security/LEN-106014
