Vulnerability in Lenovo Thinkpad L13 Gen 6 2 In 1 Bios

CVE-2026-0421

A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 Gen 6 2-in-1, L14 Gen 6, and L16 Gen 2 ThinkPads which could result in Secure Boot being disabled even when configured as “On” in the BIOS setup menu. This issue only aff…

EPSS: 0.001 (1.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2026-0421?
CVE-2026-0421 is a medium-severity vulnerability in Lenovo Thinkpad L13 Gen 6 2 In 1 Bios, classified under CWE-252. CVSS score: 6.5/10. Published 2026-01-14.
How severe is CVE-2026-0421?
Medium severity. CVSS v3 base score is 6.5 out of 10.