CVE-2026-0421_CVE-2026-0421

7 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 Gen 6 2-in-1, L14 Gen 6, and L16 Gen 2 ThinkPads which could result in Secure Boot being disabled even when configured as “On” in the BIOS setup menu. This issue only affects systems where Secure Boot is set to User Mode.

Basic Information

ID CVE-2026-0421

Source lenovo

Published Jan 14, 2026 at 22:18

Affected Product

Vendor Lenovo

Product ThinkPad L13 Gen 6 BIOS

Affected Versions Lenovo ThinkPad L13 Gen 6 BIOS 0
Lenovo ThinkPad L13 Gen 6 2 in 1 BIOS 0
Lenovo ThinkPad L14 Gen 6 BIOS 0
Lenovo ThinkPad L16 Gen 2 BIOS 0

CWE Classification

CWE-252

References

support.lenovo.com /us/en/product_security/LEN-210688

{
    "lastseen": "",
    "description": "A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 Gen 6 2-in-1, L14 Gen 6, and L16 Gen 2 ThinkPads which could result in Secure Boot being disabled even when configured as \u201cOn\u201d in the BIOS setup menu. This issue only affects systems where Secure Boot is set to User Mode.",
    "published": "2026-01-14T22:18:56.115Z",
    "modified": "2026-01-14T22:18:56.115Z",
    "type": "cve",
    "title": "CVE-2026-0421",
    "source": "lenovo",
    "references": "https://support.lenovo.com/us/en/product_security/LEN-210688",
    "id": "CVE-2026-0421",
    "bulletinFamily": "",
    "cwe": [
        "CWE-252"
    ],
    "cvelist": null,
    "sourceData": "Lenovo ThinkPad L13 Gen 6 BIOS 0\nLenovo ThinkPad L13 Gen 6 2 in 1 BIOS 0\nLenovo ThinkPad L14 Gen 6 BIOS 0\nLenovo ThinkPad L16 Gen 2 BIOS 0",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ThinkPad L13 Gen 6 BIOS",
    "version": "0",
    "vendor": "Lenovo",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}