Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hpHP, HP Product Security Response Team (PSRT)HP:C06220540
HistoryJan 25, 2019 - 12:00 a.m.

HPSBHF03602 rev. 4 - Synaptics Touchpad Driver for Windows Can Leak Freed Kernel Memory Pointers

2019-01-2500:00:00
HP, HP Product Security Response Team (PSRT)
support.hp.com
18

0.0004 Low

EPSS

Percentile

5.1%

JSON

Potential Security Impact

Information Disclosure

Source: HP, HP Product Security Response Team (PSRT)

Reported By: Synaptics

VULNERABILITY SUMMARY

The Synaptics TouchPad driver can reveal freed kernel memory pointers through the driver API. This could be used by an unauthorized third party to weaken Windows Kernel Address Space Layout Randomization.

Although the revealed data is no longer in use, these pointers could be used to analyze patterns of kernel memory that have been previously used. An unauthorized third party could then potentially mount kernel-level exploits.

RESOLUTION

HP is currently investigating our systems to determine whether they are impacted and will provide updates as soon as possible. HP recommends keeping your system up to date with the latest firmware and drivers.

Related

prion 1
nvd 1
cvelist 1
cve 1
lenovo 2
prion
prion
Design/Logic Flaw
2019-03-21 16:00:00
nvd
nvd
CVE-2018-15532
2019-03-21 16:00:21
cvelist
cvelist
CVE-2018-15532
2019-03-17 21:23:10
cve
cve
CVE-2018-15532
2019-03-21 16:00:21
lenovo
lenovo
Synaptics Touchpad Driver Leaks Kernel Memory Pointers - US
2018-11-14 01:32:39
Synaptics Touchpad Driver Leaks Kernel Memory Pointers - Lenovo Support US
2018-11-14 01:32:39

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for HP:C06220540
prion1nvd1cvelist1cve1lenovo2