Bleeping Computer

Lenovo fixes flaws that can be used to disable UEFI Secure Boot

Lenovo has fixed two high-severity vulnerabilities impacting various ThinkBook, IdeaPad, and Yoga laptop models that could allow an attacker to deactivate UEFI Secure Boot. UEFI Secure Boot is a ...
CRN

Lenovo Resolves UEFI Firmware Issues That Could Turn Off Secure Boot

The vulnerabilities were introduced when Lenovo inadvertently included an early development driver in the commercial versions of their software. Lenovo has released fixes for high-severity bios ...
Ars Technica

Lenovo patches secure boot vulnerabilities that imperil 25 notebook models

Hmmm, I'll probably get mass-downvoted for this opinion… but maybe UEFI is trying to do too much? Boot firmware is one of these things you leave well alone unless you really have an egregious problem ...