CVE-2025-13453

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive.

medium 4.6 CVSS 3.1
Published: Jan 14, 2026
Modified: Jun 1, 2026
Vendor: Lenovo
Product: Thinkplus Fu100 Firmware
Versions: gen1

Description

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive.

References

Related CVEs

CVE-2025-13454 medium · 5.5
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to gain access to sensitive device information.
CVE-2022-0354 high · 7.3
A vulnerability was reported in Lenovo System Update that could allow a local user with interactive system access the ability to execute code with elevated privileges only during t