CVE-2017-3751

Summary

An unquoted service path vulnerability was identified in the driver for the ThinkPad Compact USB Keyboard with TrackPoint versions earlier than 1.5.5.0. This could allow an attacker with local privileges to execute code with administrative privileges.

Affected Software

VendorProductVersion RangeStatus
Lenovo Group Ltd.ThinkPad Compact USB Keyboard with TrackPoint DriverEarlier than 1.5.5.0affected

Weaknesses

  • Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

References