CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
28.6%
Conexant Systems mictray64 task, as used on HP Elite, EliteBook, ProBook, and ZBook systems, leaks sensitive data (keystrokes) to any process. In mictray64.exe (mic tray icon) 1.0.0.46, a LowLevelKeyboardProc Windows hook is used to capture keystrokes. This data is leaked via unintended channels: debug messages accessible to any process that is running in the current user session, and filesystem access to C:\Users\Public\MicTray.log by any process.
Vendor | Product | Version | CPE |
---|---|---|---|
conexant | mictray64 | * | cpe:2.3:a:conexant:mictray64:*:*:*:*:*:*:*:* |
hp | elite_x2_1012_g1 | - | cpe:2.3:h:hp:elite_x2_1012_g1:-:*:*:*:*:*:*:* |
hp | elitebook_1030_g1 | - | cpe:2.3:h:hp:elitebook_1030_g1:-:*:*:*:*:*:*:* |
hp | elitebook_725_g3 | - | cpe:2.3:h:hp:elitebook_725_g3:-:*:*:*:*:*:*:* |
hp | elitebook_745_g3 | - | cpe:2.3:h:hp:elitebook_745_g3:-:*:*:*:*:*:*:* |
hp | elitebook_755_g3 | - | cpe:2.3:h:hp:elitebook_755_g3:-:*:*:*:*:*:*:* |
hp | elitebook_820_g3 | - | cpe:2.3:h:hp:elitebook_820_g3:-:*:*:*:*:*:*:* |
hp | elitebook_828_g3 | - | cpe:2.3:h:hp:elitebook_828_g3:-:*:*:*:*:*:*:* |
hp | elitebook_840_g3 | - | cpe:2.3:h:hp:elitebook_840_g3:-:*:*:*:*:*:*:* |
hp | elitebook_848_g3 | - | cpe:2.3:h:hp:elitebook_848_g3:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
28.6%