Vulnerability in Lenovo Thinkpad L13 Gen 6 2 In 1 Bios
CVE-2026-0421
A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 Gen 6 2-in-1, L14 Gen 6, and L16 Gen 2 ThinkPads which could result in Secure Boot being disabled even when configured as “On” in the BIOS setup menu. This issue only aff…
EPSS: 0.001 (1.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Lenovo Thinkpad L13 Gen 6 2 In 1 Bios — versions 0
- Lenovo Thinkpad L13 Gen 6 Bios — versions 0
- Lenovo Thinkpad L14 Gen 6 Bios — versions 0
- Lenovo Thinkpad L16 Gen 2 Bios — versions 0
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-0421?
- CVE-2026-0421 is a medium-severity vulnerability in Lenovo Thinkpad L13 Gen 6 2 In 1 Bios, classified under CWE-252. CVSS score: 6.5/10. Published 2026-01-14.
- How severe is CVE-2026-0421?
- Medium severity. CVSS v3 base score is 6.5 out of 10.