CVE-2016-8222

Name of the Vulnerable Software and Affected Versions Lenovo ThinkPad systems (affected versions not specified)

Description A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems. This issue can allow an attacker with Windows administrator-level privileges to call System Management Mode (SMM) services, potentially leading to a denial of service attack. It may also enable the alteration of certain BIOS variables or settings, such as the boot sequence. However, the setting or changing of BIOS passwords is not affected by this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.