Lenovo Security Advisory: LEN-26775
Potential Impact: Privilege escalation
Severity: High
Scope of Impact: Industry-wide
CVE Identifier: CVE-2018-3666, CVE-2018-3670, CVE-2018-3672
Summary Description:
Intel has notified Lenovo of vulnerabilities affecting Intel Smart Sound Technologies that may allow a low-privileged user to execute code as administrator.
Mitigation Strategy for Customers (what you should do to protect yourself):
Intel recommends upgrading to the Intel Smart Sound Technology version (or newer) indicated for your model in the Product Impact section below.
Product Impact: