Security researchers have discovered critical BIOS vulnerabilities affecting Lenovo’s IdeaCentre and Yoga All-in-One desktop computers that could allow privileged attackers to execute arbitrary code and potentially compromise system security at the firmware level.
Critical Security Flaws Discovered in Popular Desktop Models
The vulnerabilities, disclosed through Lenovo Security Advisory LEN-201013 and Insyde Security Advisory INSYDE-SA-2025007, affect the InsydeH2O BIOS firmware used in several Lenovo desktop products.
https://gbhackers.com/lenovo-ideacentre ... rary-code/