CVE-2015-3320

EUVD-2015-3366
Lenovo USB Enhanced Performance Keyboard software before 2.0.2.2 includes active debugging code in SKHOOKS.DLL, which allows local users to obtain keypress information by accessing debug output.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
lenovousb_enhanced_performance_keyboard
𝑥
≤ 2.0.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/74196
https://support.lenovo.com/us/en/product_security/usbenhancedkeyboard
http://www.securityfocus.com/bid/74196
https://support.lenovo.com/us/en/product_security/usbenhancedkeyboard