CVE-2022-1892
CVE-2022-1892: A buffer overflow in Lenovo SystemBootManagerDxe (and related ReadyBootDxe/SystemLoadDefaultDxe drivers) is caused by insufficient validation of the DataSize NVRAM variable, enabling local privilege escalation and arbitrary code execution on affected Lenovo Notebook firmware. Mitig...