Vulnerability Details CVE-2018-15532
SynTP.sys in Synaptics Touchpad drivers before 2018-06-06 allows local users to obtain sensitive information about freed kernel addresses.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.0%
CVSS Severity
CVSS v3 Score 3.8
CVSS v2 Score 2.1
References
- http://www.securityfocus.com/bid/106799
- https://support.lenovo.com/us/en/product_security/LEN-23156
- https://www.synaptics.com/products/touchpad-family
- https://www.synaptics.com/sites/default/files/touchpad-driver-security-brief-20190124.pdf
- http://www.securityfocus.com/bid/106799
- https://support.lenovo.com/us/en/product_security/LEN-23156
- https://www.synaptics.com/products/touchpad-family
- https://www.synaptics.com/sites/default/files/touchpad-driver-security-brief-20190124.pdf
Products affected by CVE-2018-15532
-
cpe:2.3:a:hp:synaptics_touchpad_driver:-
-
cpe:2.3:a:hp:synaptics_touchpad_driver:2018-06-06