Lenovo releases security fixes for bugs in its devices

The company has urged users to update to the latest security fix to ensure safety of their systems. The update fixed security for multi-vendor BIOS security vulnerabilities that could cause information disclosure, privilege escalation, denial of service on affected systems. Earlier, on Monday, The Indian Computer Emergency Response Team released notes for the bugs found in Lenovo products urging users to apply appropriate security updates. Similar bugs were also detected in system management interrupt, set BIOS password SMI Handler, smart USB protection SMI handler, and system management interrupt Handler used to configure platform settings over Windows Management Instrumentation, according to CERT-In. Local authenticated attackers could exploit these bugs by sending specially crafted requests compromising the security of affected systems.