Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-15596
HistoryAug 12, 2020 - 10:15 p.m.

CVE-2020-15596

2020-08-1222:15:12
CWE-427
[email protected]
web.nvd.nist.gov
26
alps alpine
touchpad driver
cve-2020-15596
path disclosure
fake dll
dell
hp
lenovo
nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

The ALPS ALPINE touchpad driver before 8.2206.1717.634, as used on various Dell, HP, and Lenovo laptops, allows attackers to conduct Path Disclosure attacks via a “fake” DLL file.

Affected configurations

NVD
Node
hpelite_x2_1012_g1Match-
AND
hpelite_x2_1012_g1_firmwareRange<8.2206.1717.166
Node
hpelite_x2_1012_g2Match-
AND
hpelite_x2_1012_g2_firmwareRange<8.2206.1717.634
Node
hpelitebook_1030_g1Match-
AND
hpelitebook_1030_g1_firmwareRange<8.2206.1717.166
Node
hpelitebook_1040_g4Match-
AND
hpelitebook_1040_g4_firmwareRange<8.2206.1717.634
Node
hpelitebook_folio_1040_g3Match-
AND
hpelitebook_folio_1040_g3_firmwareRange<8.2206.1717.166
Node
hpelitebook_folio_g1Match-
AND
hpelitebook_folio_g1_firmwareRange<8.2206.1717.166
Node
hpelitebook_revolve_810_g2Match-
AND
hpelitebook_revolve_810_g2_firmwareRange<10.1201.1717.108
Node
hpelitebook_revolve_810_g3Match-
AND
hpelitebook_revolve_810_g3_firmwareRange<10.1201.1717.108
Node
hpelitebook_x360_1020_g2_firmwareRange<8.2206.1717.634
AND
hpelitebook_x360_1020_g2Match-
Node
hpelitebook_x360_1030_g2_firmwareRange<8.2206.1717.634
AND
hpelitebook_x360_1030_g2Match-
Node
hppro_x2_612_g2_firmwareRange<8.2206.1717.634
AND
hppro_x2_612_g2Match-
Node
hpzbook_studio_g3_firmwareRange<8.2206.1717.166
AND
hpzbook_studio_g3Match-
Node
hpzbook_studio_g4_firmwareRange<8.2206.1717.634
AND
hpzbook_studio_g4Match-
Node
hpzbook_x2_g4_firmwareRange<8.2206.1717.634
AND
hpzbook_x2_g4Match-

Related

prion 1
nvd 1
hp 1
lenovo 2
cvelist 1
prion
prion
Path traversal
2020-08-12 22:15:00
nvd
nvd
CVE-2020-15596
2020-08-12 22:15:12
hp
hp
HPSBHF03677 rev. 1 - ALPS ALPINE Touchpad Driver Security Update
2020-07-23 00:00:00
lenovo
lenovo
ALPS ALPINE Touchpad Driver Vulnerabilities - Lenovo Support US
2020-08-07 15:43:27
ALPS ALPINE Touchpad Driver Vulnerabilities - Lenovo Support NL
2020-08-07 15:43:27
cvelist
cvelist
CVE-2020-15596
2020-08-12 21:35:44

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON
Related for CVE-2020-15596
prion1nvd1hp1lenovo2cvelist1