CVE-2017-7293

First published: Wed Apr 26 2017(Updated: )

The Dolby DAX2 and DAX3 API services are vulnerable to a privilege escalation vulnerability that allows a normal user to get arbitrary system privileges, because these services have .NET code for DCOM. This affects Dolby Audio X2 (DAX2) 1.0, 1.0.1, 1.1, 1.1.1, 1.2, 1.3, 1.3.1, 1.3.2, 1.4, 1.4.1, 1.4.2, 1.4.3, and 1.4.4 and Dolby Audio X3 (DAX3) 1.0 and 1.1. An example affected driver is Realtek Audio Driver 6.0.1.7898 on a Lenovo P50.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/references
• agent/type
• collector/mitre-cve
• source/MITRE
• agent/severity
• agent/author
• agent/weakness
• agent/last-modified-date
• agent/softwarecombine
• agent/tags
• agent/event
• agent/description
• agent/first-publish-date
• vendor/dolby
• canonical/dolby dolby audio x2
• version/dolby dolby audio x2/1.0
• version/dolby dolby audio x2/1.0.1
• version/dolby dolby audio x2/1.1
• version/dolby dolby audio x2/1.1.1
• version/dolby dolby audio x2/1.2
• version/dolby dolby audio x2/1.3
• version/dolby dolby audio x2/1.3.1
• version/dolby dolby audio x2/1.3.2
• version/dolby dolby audio x2/1.4
• version/dolby dolby audio x2/1.4.1
• version/dolby dolby audio x2/1.4.2
• version/dolby dolby audio x2/1.4.3
• version/dolby dolby audio x2/1.4.4
• canonical/dolby dolby audio x3
• version/dolby dolby audio x3/1.0
• version/dolby dolby audio x3/1.1