CVE-2025-10238 | Lenovo X13 Gen 6 Laptops BIOS prior 1.12 System Management Mode out-of-bounds write

June 10, 2026 Yanac

A vulnerability described as critical has been identified in Lenovo X13 Gen 6 Laptops BIOS, X1 Carbon 13th Gen Laptops BIOS, P16v Gen 3 Laptop BIOS, L16 Gen 1 Laptops BIOS, T14s Gen 6 Laptops BIOS, P14s Gen 6 Laptops BIOS, L13 Gen 6 Laptops BIOS, L14 Gen 6 Laptops BIOS, E16 Gen 3 Laptop BIOS, L16 Gen 2 Laptops BIOS, X1 2-in-1 Gen 9 Laptop BIOS, X1 Fold 16 Gen 1 Laptop BIOS, Z16 Gen 2 Laptop BIOS, P16v Gen 1 Laptop BIOS, X13 Gen 4 Laptop BIOS, T14s Gen 4 Laptop BIOS, P14s Gen 4 Laptop BIOS, P1 Gen 6 Laptop BIOS, P16 Gen 2 Laptop BIOS, X13 Yoga Gen 4 Laptop BIOS, P16s Gen 2 Laptop BIOS, E14 Gen 5 Laptop BIOS, ThinkPad R14 Gen 5 Type 21JM PRC BIOS, L14 Gen 4 Laptop BIOS, L13 Gen 4 Laptop BIOS, X1 Nano Gen 3 Laptop BIOS, S2 Yoga Gen 8 China Only Laptop BIOS, L15 Gen 4 Laptops BIOS, X1 Yoga 8th Gen Laptop BIOS, P15v Gen 3 Laptop BIOS, P16 Gen 1 Laptop BIOS, X1 2-in-1 Gen 10 Laptop BIOS, X9-15 Gen 1 Laptop BIOS, X9-14 Gen 1 Laptop BIOS, T14s Gen 5 Laptop BIOS, L14 Gen 5 Laptops BIOS, E14 Gen 6 Laptops BIOS, E16 Gen 3 Laptops BIOS, T14 Gen 3 Laptop BIOS, T15p Gen 3 Laptop BIOS, P1 Gen 5 Laptop BIOS, T14s Gen 3 Laptop BIOS, P14s Gen 3 Laptop BIOS, Z16 Gen 1 Laptop BIOS, L14 Gen 3 Laptops BIOS, X13 Yoga Gen 3 Laptop BIOS, L13 Yoga Gen 3 Laptop BIOS, E14 Gen 4 Laptops BIOS, X1 Nano Gen 2 Laptop BIOS, E15 Gen 4 Laptop BIOS, ThinkPad S2 Gen 7 Type 21BD BIOS, X1 Yoga 7th Gen Laptop BIOS, ThinkPad S2 Yoga Gen 6 Type 20VN China Only BIOS, X1 Yoga 6th Gen Laptop BIOS, E15 Gen 3 Laptop BIOS, X13 Yoga Gen 2 Laptop BIOS, X13 Gen 2 Laptop BIOS, L14 Gen 2 Laptop BIOS, T15g Gen 1 Laptop BIOS, T15p Gen 2 Laptop BIOS, P14s Gen 2 Laptop BIOS, ThinkPad S2 Yoga Gen 6 Type 21AG China Only BIOS, X1 Extreme 4th Gen Laptop BIOS, P17 Gen 2 Laptops BIOS, X1 Titanium Laptop BIOS, X1 Nano Gen 1 Laptop BIOS, X12 Detachable Gen 1 Laptop BIOS, E16 Gen 2 Laptops BIOS, X13 Gen 5 Laptop BIOS, L14 Gen 2 Type 20X1 20X2 Laptops BIOS, T16 Gen 4 Laptops BIOS, T15 Gen 2 Laptop BIOS, X1 Fold Gen 1 Laptop BIOS, X1 Extreme 3rd Gen Laptop BIOS, T14s Laptop BIOS, T15 Laptop BIOS, X13 Yoga Gen 1 Laptop BIOS, X1 Yoga 5th Gen Laptop BIOS, X390 Yoga Laptop BIOS, X1 Yoga 4th Gen Laptop BIOS, X390 Laptop BIOS, P73 Laptop BIOS, T490 Laptop BIOS, X1 Extreme 2nd Gen Laptop BIOS, L390 Laptops BIOS, L13 Laptops BIOS, L13 Gen 5 Laptops BIOS, E14 Gen 7 Laptops BIOS, L13 2-in-1 Gen 6 Laptops BIOS, P1 Gen 7 Laptop BIOS, P14s Gen 5 Laptops BIOS, T14 Gen 5 Laptops BIOS, X12 Detachable Gen 2 Laptops BIOS, T16 Gen 3 Laptops BIOS and P16v Gen 2 Laptops BIOS. This vulnerability affects unknown code of the component System Management Mode. Executing a manipulation can lead to out-of-bounds write.

This vulnerability is handled as CVE-2025-10238. It is possible to launch the attack on the local host. There is not any exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More