Over a hundred Lenovo models get emergency security patches

A number of Lenovo’s products, from desktop PCs to laptops, have been fixed with major BIOS flaws that could enable threat actors to launch devastating cyberattacks. Security advisories published by the company earlier this week mention dozens of its products, including Desktop, All-in-Ones, IdeaCentres, Legions, ThinkCentres, ThinkPads, ThinkAgile, ThinkStation, and ThinkSystems, which are vulnerable to multiple security flaws.

By exploiting these flaws, threat actors could gain access to sensitive data, escalate privileges, launch denial of service attacks, and execute arbitrary code. By exploiting these flaws, threat actors could gain access to sensitive data, escalate privileges, launch denial of service attacks, and execute arbitrary code.

Lenovo fixed the following vulnerabilities: CVE-2021-28216, CVE-2022-40134, CVE-2022-40135 (information leak vulnerabilities in the Smart USB Protection SMI Handler, that allow access to SMM memory), CVE-2022-40136 (information leak in SMI Handler used to configure platform settings over WMI, allowing SMM memory reading), CVE-2022-40137 (buffer overflow in the WMI SMI Handler, allowing the execution of arbitrary code), American Megatrends security enhancements (no CVEs).

System administrators are urged to apply this BIOS update immediately in order to fix the flaws. A short list of models will receive updates early next year, with more patches expected before the end of the month and in October. Lenovo’s “Drivers & Software” portal is a good place to check for drivers and software for endpoints, and then select “Manual Update” if they need to be fixed. They can then manually install the latest BIOS firmware version after downloading it.

What is an eSIM?

It has survived for a long time, but modern phones don’t use SIM cards anymore. In order to identify your device to carriers, manufacturers use embedded SIMs, also known as eSIMs. The use of SIM cards is still prevalent among pay-as-you-go services like Straight Talk, but eSIMs, rather than physical SIM cards, are increasingly common.

What is a SIM card?

In the absence of SIM card, your phone does not even have a valid phone number, preventing you from making or receiving calls over wireless networks. One corner of this small card is notch, and one side is covered with gold circuits that are connected to the card reader inside your phone. You need to make sure you buy the correct SIM card size for the phone you’re using since SIM cards come in four different sizes – standard, mini, micro, and nano.

The most significant advantage of a SIM card is its ability to be removed from one device and inserted into another. By using this method, you don’t have to contact your carrier to upgrade your phone. Taking out your existing SIM card and replacing it with one from a local carrier at your destination can also help you avoid roaming charges when traveling; all you need to do is swap out your regular SIM card for the one from the local carrier and you’ll be able to access the internet.

What is an eSIM?

A SIM embedded in an electronic device, known as an embedded SIM or eSIM, cannot be removed. Essentially, it is a programmable SIM card that is physically attached (soldered) to the motherboard of your smartphone. Although you can remove it physically, you cannot remove the SIM card from the phone without breaking it open and unsoldering the chip.

It may seem problematic. To avoid paying roaming fees from your primary carrier when traveling abroad with a phone with a removable SIM card, you can swap to another carrier’s SIM card. As well, removable SIM cards can be easily replaced with a new one if you want to switch local carriers but keep your phone. When you think of an eSIM, you might think that this is impossible.

It is actually possible to switch carriers even more easily with eSIM technology at least in theory. By entering your carrier’s information into your smartphone, you can transfer SIM cards right on your phone without waiting for them to arrive or going to a store to buy them. The settings menu on your smartphone will allow you to configure your eSIM, switch between lines, and manage your accounts if it has an eSIM. It may even be possible to switch between multiple SIM cards with eSIM technology if you’re a dual-SIM user.

The removal of a physical SIM tray is another significant benefit of eSIM technology. A slot and tray are not required on the outside edge of the device because the eSIM chip is embedded on the motherboard. Batteries can be larger and thinner as a result.

Devices with eSIM technology

  1. Google Pixel 2
  2. Google Pixel 3
  3. Microsoft’s Surface Pro LTE
  4. Apple Watch Series 3
  5. iPad Pro
  6. iPhone 14