Lenovo Security Advisory: LEN-11588
Potential Impact: Escalation of privileges by a local user
Severity: High
**Scope of Impact:**Lenovo-specific
**CVE Identifier:**CVE-2016-8225
Summary Description:
A vulnerability was identified in the Lenovo Edge USB Keyboard driver for Windows 7, 8 and 10 where a user with local privileges could execute a file with administrator level privileges. The Lenovo Edge USB Keyboard is also referred to as Lenovo Slim USB Keyboard or Lenovo Low Profile Keyboard.
Mitigation Strategy for Customers (what you should do to protect yourself):
Update the keyboard driver to version 1.21 or later here by following the instructions in the readme file or by updating your system through Lenovo System Update.