CVE-2017-3767

EUVD-2017-12884
A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Affected Products (NVD)
VendorProductVersion
realtekaudio_driver_firmware
𝑥
< 6.0.1.8224
𝑥
= Vulnerable software versions
References
https://support.lenovo.com/us/en/product_security/LEN-15759
https://support.lenovo.com/us/en/product_security/LEN-15759