Lenovo has announced high-severity BIOS vulnerabilities in its all-in-one desktops that could allow attackers to bypass Secure Boot, particularly affecting models with customized Insyde UEFI firmware. Six flaws discovered by Binarly can lead to privilege escalation and persistent firmware compromise, with security updates already available for some models and planned for others in the coming months.