Medium CVE-2025-10238 During an internal security assessment, a potential out-of-bounds write vulnerability was discovered in the BIOS of some ThinkPad products could allow a privileged local user to execute code in System Management Mode (SMM). CVSS: 6.7 · CWE: CWE-787 View on NVD