A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code.
Credits
Lenovo thanks Krzysztof Okupski of IOActive for reporting this issue.
