Lenovo is currently known as one of the most popular PC manufacturers in the world. The company recently announced that users should update their systems as soon as possible due to the discovery of a critical vulnerability in the BIOS of many of its desktop computers and laptops. Of course, until this moment, no report has been published about the abuse of the new BIOS bug of Lenovo computers.
Lenovo has released a list of all desktops, all-in-ones, laptops, and even servers that are affected by the BIOS vulnerability. Desktop models include Legion, ThinkSystem, ThinkStation, ThinkCentre, IdeaCentre, M Series, V Series, and Yoga Series. In addition, according to the announcement of this company, some models of Yoga, Legion, ThinkBook, ThinkPad, IdeaPad and Flex series laptops are affected by the BIOS security bug.
to report DigitalTrendsHundreds of models of Lenovo computers are at risk of BIOS vulnerability, and owners of the company’s products should check the published list of vulnerable devices and update it as soon as possible if their system is among the list.
A BIOS vulnerability on Lenovo computers could help attackers gain unauthorized access to information on target systems and even execute arbitrary code on them. This bug is identified on various models of Lenovo computers with IDs CVE-2021-28216, CVE-2022-40134, CVE-2022-40135, CVE-2022-40136 and CVE-2022-40137. American Megatrends has now released a BIOS security update for all models affected by this vulnerability, and Lenovo is using this update on its devices.
Lenovo has provided the necessary links to update the BIOS. To access this update, you can enter your device model in Support page Search for Lenovo products. The company has also provided specific instructions for updating each model in an instruction sheet.
The BIOS security vulnerability of Lenovo computers was first announced by BleepingComputer. Due to the importance of this news, if you use computers of this brand, it is better to update it as soon as possible so that the security of your data and network remains intact.