CVE-2018-16098
First published: Thu Jan 10 2019(Updated: )
In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of the Synaptics Pointing Device driver which could allow unauthorized code execution as a low privilege user.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo Synaptics ThinkPad Ultranav Driver | =18.0.7.119 | |
| Microsoft Windows 7 | ||
| Microsoft Windows 8.1 | ||
| Lenovo Synaptics ThinkPad Ultranav Driver | =19.5.19.33 | |
| Microsoft Windows 10 | ||
| Lenovo Synaptics ThinkPad Ultranav Driver | =19.0.17.140 | |
| Microsoft Windows 8.1 | ||
| Lenovo Synaptics ThinkPad Ultranav Driver | =19.3.4.219 | |
| Lenovo Synaptics ThinkPad Ultranav Driver | =16.2.19.23 | |
| Lenovo Synaptics ThinkPad Ultranav Driver | =18.1.27.42 | |
| Lenovo ThinkPad helix firmware | ||
| Lenovo ThinkPad helix | ||
| Lenovo ThinkPad L430 Firmware | ||
| Lenovo ThinkPad L430 | ||
| Lenovo ThinkPad L530 Firmware | ||
| Lenovo ThinkPad L530 | ||
| Lenovo ThinkPad P1 Firmware | ||
| Lenovo ThinkPad P1 Firmware | ||
| Lenovo ThinkPad X1 Extreme Firmware | ||
| Lenovo ThinkPad X1 Extreme | ||
| Lenovo ThinkPad P50s Firmware | ||
| Lenovo ThinkPad P50s Firmware | ||
| Lenovo ThinkPad P51 Firmware | ||
| Lenovo ThinkPad P51 | ||
| Lenovo ThinkPad P51s Firmware | ||
| Lenovo ThinkPad P51s Firmware | ||
| Lenovo ThinkPad P52s Firmware | ||
| Lenovo ThinkPad P52s Firmware | ||
| Lenovo ThinkPad P70 Firmware | ||
| Lenovo ThinkPad P70 | ||
| Lenovo ThinkPad S1 Yoga Firmware | ||
| Lenovo ThinkPad S1 Yoga | ||
| Lenovo ThinkPad S430 Firmware | ||
| Lenovo ThinkPad S430 | ||
| Lenovo ThinkPad T420i Firmware | ||
| Lenovo ThinkPad T420i | ||
| Lenovo ThinkPad T420i Firmware | ||
| Lenovo ThinkPad T420i | ||
| Lenovo ThinkPad t420s firmware | ||
| Lenovo ThinkPad T420 | ||
| Lenovo ThinkPad T420si Firmware | ||
| Lenovo ThinkPad T420si Firmware | ||
| Lenovo ThinkPad T430s Firmware | ||
| Lenovo ThinkPad T430s Firmware | ||
| Lenovo ThinkPad T430i Firmware | ||
| Lenovo ThinkPad T430i Firmware | ||
| Lenovo ThinkPad t431s firmware | ||
| Lenovo ThinkPad T431s | ||
| Lenovo ThinkPad t440 firmware | ||
| Lenovo ThinkPad t440 | ||
| Lenovo ThinkPad t440s firmware | ||
| Lenovo ThinkPad t440s | ||
| Lenovo ThinkPad t440p firmware | ||
| Lenovo ThinkPad t440p | ||
| Lenovo ThinkPad t460s firmware | ||
| Lenovo ThinkPad t460s | ||
| Lenovo ThinkPad T470 firmware | ||
| lenovo thinkpad t470 | ||
| Lenovo ThinkPad t470s firmware | ||
| Lenovo ThinkPad T470s | ||
| Lenovo ThinkPad T520 Firmware | ||
| Lenovo ThinkPad t520 | ||
| Lenovo ThinkPad T520i firmware | ||
| Lenovo ThinkPad T520i firmware | ||
| Lenovo ThinkPad T530 Firmware | ||
| Lenovo ThinkPad T530i | ||
| Lenovo ThinkPad T530i Firmware | ||
| Lenovo ThinkPad T530i Firmware | ||
| Lenovo ThinkPad T540 Firmware | ||
| Lenovo ThinkPad T540 | ||
| Lenovo ThinkPad t540p firmware | ||
| Lenovo ThinkPad t540p | ||
| Lenovo ThinkPad t550 firmware | ||
| Lenovo ThinkPad t550 | ||
| Lenovo ThinkPad t560 firmware | ||
| Lenovo ThinkPad t560 | ||
| Lenovo ThinkPad t570 firmware | ||
| lenovo thinkpad t570 | ||
| Lenovo ThinkPad t580 firmware | ||
| lenovo thinkpad t580 | ||
| Lenovo ThinkPad twist firmware | ||
| Lenovo ThinkPad Twist | ||
| Lenovo ThinkPad S230u Firmware | ||
| Lenovo ThinkPad S230u Firmware | ||
| Lenovo ThinkPad W530 Firmware | ||
| Lenovo ThinkPad W530 Firmware | ||
| Lenovo ThinkPad w540 firmware | ||
| Lenovo ThinkPad w540 | ||
| Lenovo ThinkPad w541 firmware | ||
| Lenovo ThinkPad w541 | ||
| Lenovo ThinkPad w550s firmware | ||
| Lenovo ThinkPad w550s | ||
| Lenovo ThinkPad x1 carbon firmware | ||
| Lenovo ThinkPad X1 Carbon | ||
| Lenovo ThinkPad x1 yoga firmware | ||
| Lenovo ThinkPad X1 Yoga | ||
| Lenovo ThinkPad x1 hybrid firmware | ||
| Lenovo ThinkPad x1 hybrid firmware | ||
| Lenovo ThinkPad x1 hybrid firmware | ||
| Lenovo ThinkPad x1 hybrid firmware | ||
| Lenovo ThinkPad x220 tablet firmware | ||
| Lenovo ThinkPad x220 firmware | ||
| Lenovo ThinkPad x220 firmware | ||
| Lenovo ThinkPad x220 firmware | ||
| Lenovo ThinkPad x220 tablet firmware | ||
| Lenovo ThinkPad x220 tablet firmware | ||
| Lenovo ThinkPad x230s firmware | ||
| Lenovo ThinkPad x230 tablet | ||
| Lenovo ThinkPad x230i firmware | ||
| Lenovo ThinkPad x230 | ||
| Lenovo ThinkPad x230 tablet | ||
| Lenovo ThinkPad x230 tablet firmware | ||
| Lenovo ThinkPad x230i tablet firmware | ||
| Lenovo ThinkPad x230i tablet | ||
| Lenovo ThinkPad x230s firmware | ||
| Lenovo ThinkPad x230s firmware | ||
| Lenovo ThinkPad x240s firmware | ||
| Lenovo ThinkPad x240s | ||
| Lenovo ThinkPad x240 firmware | ||
| Lenovo ThinkPad x240 | ||
| Lenovo ThinkPad x250 firmware | ||
| Lenovo ThinkPad x250 | ||
| Lenovo ThinkPad x280 firmware | ||
| lenovo thinkpad x280 | ||
| Lenovo ThinkPad yoga 11e firmware | ||
| Lenovo ThinkPad yoga 11e |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-16098?
CVE-2018-16098 is considered to have a low severity rating, allowing unauthorized code execution as a low privilege user.
How do I fix CVE-2018-16098?
To mitigate CVE-2018-16098, users should update to the latest version of the Lenovo Synaptics ThinkPad Ultranav Driver.
Which devices are affected by CVE-2018-16098?
CVE-2018-16098 affects specific versions of the Synaptics Pointing Device driver found in various Lenovo ThinkPad models.
What could happen if CVE-2018-16098 is exploited?
If exploited, CVE-2018-16098 could allow an attacker to execute unauthorized code with low privileges on a vulnerable Lenovo device.
Is CVE-2018-16098 specific to Lenovo products?
Yes, CVE-2018-16098 specifically affects Lenovo ThinkPads that utilize the vulnerable versions of the Synaptics Pointing Device driver.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/remedy
- agent/first-publish-date
- agent/description
- agent/author
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/lenovo
- canonical/lenovo synaptics thinkpad ultranav driver
- version/lenovo synaptics thinkpad ultranav driver/18.0.7.119
- vendor/microsoft
- canonical/microsoft windows 7
- canonical/microsoft windows 8.1
- version/lenovo synaptics thinkpad ultranav driver/19.5.19.33
- canonical/microsoft windows 10
- version/lenovo synaptics thinkpad ultranav driver/19.0.17.140
- version/lenovo synaptics thinkpad ultranav driver/19.3.4.219
- version/lenovo synaptics thinkpad ultranav driver/16.2.19.23
- version/lenovo synaptics thinkpad ultranav driver/18.1.27.42
- canonical/lenovo thinkpad helix firmware
- canonical/lenovo thinkpad helix
- canonical/lenovo thinkpad l430 firmware
- canonical/lenovo thinkpad l430
- canonical/lenovo thinkpad l530 firmware
- canonical/lenovo thinkpad l530
- canonical/lenovo thinkpad p1 firmware
- canonical/lenovo thinkpad x1 extreme firmware
- canonical/lenovo thinkpad x1 extreme
- canonical/lenovo thinkpad p50s firmware
- canonical/lenovo thinkpad p51 firmware
- canonical/lenovo thinkpad p51
- canonical/lenovo thinkpad p51s firmware
- canonical/lenovo thinkpad p52s firmware
- canonical/lenovo thinkpad p70 firmware
- canonical/lenovo thinkpad p70
- canonical/lenovo thinkpad s1 yoga firmware
- canonical/lenovo thinkpad s1 yoga
- canonical/lenovo thinkpad s430 firmware
- canonical/lenovo thinkpad s430
- canonical/lenovo thinkpad t420i firmware
- canonical/lenovo thinkpad t420i
- canonical/lenovo thinkpad t420s firmware
- canonical/lenovo thinkpad t420
- canonical/lenovo thinkpad t420si firmware
- canonical/lenovo thinkpad t430s firmware
- canonical/lenovo thinkpad t430i firmware
- canonical/lenovo thinkpad t431s firmware
- canonical/lenovo thinkpad t431s
- canonical/lenovo thinkpad t440 firmware
- canonical/lenovo thinkpad t440
- canonical/lenovo thinkpad t440s firmware
- canonical/lenovo thinkpad t440s
- canonical/lenovo thinkpad t440p firmware
- canonical/lenovo thinkpad t440p
- canonical/lenovo thinkpad t460s firmware
- canonical/lenovo thinkpad t460s
- canonical/lenovo thinkpad t470 firmware
- canonical/lenovo thinkpad t470
- canonical/lenovo thinkpad t470s firmware
- canonical/lenovo thinkpad t470s
- canonical/lenovo thinkpad t520 firmware
- canonical/lenovo thinkpad t520
- canonical/lenovo thinkpad t520i firmware
- canonical/lenovo thinkpad t530 firmware
- canonical/lenovo thinkpad t530i
- canonical/lenovo thinkpad t530i firmware
- canonical/lenovo thinkpad t540 firmware
- canonical/lenovo thinkpad t540
- canonical/lenovo thinkpad t540p firmware
- canonical/lenovo thinkpad t540p
- canonical/lenovo thinkpad t550 firmware
- canonical/lenovo thinkpad t550
- canonical/lenovo thinkpad t560 firmware
- canonical/lenovo thinkpad t560
- canonical/lenovo thinkpad t570 firmware
- canonical/lenovo thinkpad t570
- canonical/lenovo thinkpad t580 firmware
- canonical/lenovo thinkpad t580
- canonical/lenovo thinkpad twist firmware
- canonical/lenovo thinkpad twist
- canonical/lenovo thinkpad s230u firmware
- canonical/lenovo thinkpad w530 firmware
- canonical/lenovo thinkpad w540 firmware
- canonical/lenovo thinkpad w540
- canonical/lenovo thinkpad w541 firmware
- canonical/lenovo thinkpad w541
- canonical/lenovo thinkpad w550s firmware
- canonical/lenovo thinkpad w550s
- canonical/lenovo thinkpad x1 carbon firmware
- canonical/lenovo thinkpad x1 carbon
- canonical/lenovo thinkpad x1 yoga firmware
- canonical/lenovo thinkpad x1 yoga
- canonical/lenovo thinkpad x1 hybrid firmware
- canonical/lenovo thinkpad x220 tablet firmware
- canonical/lenovo thinkpad x220 firmware
- canonical/lenovo thinkpad x230s firmware
- canonical/lenovo thinkpad x230 tablet
- canonical/lenovo thinkpad x230i firmware
- canonical/lenovo thinkpad x230
- canonical/lenovo thinkpad x230 tablet firmware
- canonical/lenovo thinkpad x230i tablet firmware
- canonical/lenovo thinkpad x230i tablet
- canonical/lenovo thinkpad x240s firmware
- canonical/lenovo thinkpad x240s
- canonical/lenovo thinkpad x240 firmware
- canonical/lenovo thinkpad x240
- canonical/lenovo thinkpad x250 firmware
- canonical/lenovo thinkpad x250
- canonical/lenovo thinkpad x280 firmware
- canonical/lenovo thinkpad x280
- canonical/lenovo thinkpad yoga 11e firmware
- canonical/lenovo thinkpad yoga 11e