CVE-2018-15532

3.8LOW

Key Information:

Vendor: HP
Status: Synaptics ToucHPad Driver
Vendor: CVE Published:; 21 March 2019

Summary

SynTP.sys in Synaptics Touchpad drivers before 2018-06-06 allows local users to obtain sensitive information about freed kernel addresses.

References

http://www.securityfocus.com/bid/106799

x_refsource_MISC

https://support.lenovo.com/us/en/product_security/LEN-23156

x_refsource_MISC

https://www.synaptics.com/products/touchpad-family

x_refsource_MISC

CVSS V3.1

Score:

3.8

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Mar 21, 2019
Vulnerability Reserved
Aug 19, 2018

.