Some Lenovo System x server BIOS/UEFI versions, when Secure Boot mode is enabled by a system administrator, do not properly authenticate signed code before booting it. As a result, an attacker with physical access to the system could boot unsigned code.
[
{
"product": "Some Lenovo Flex System and Lenovo System x products",
"vendor": "Lenovo Group Ltd.",
"versions": [
{
"status": "affected",
"version": "Affected BIOS version varies by product"
}
]
}
]