First published: Wed Jun 05 2019(Updated: )
Incorrect access control in the CxUtilSvc component of the Synaptics Sound Device drivers prior to version 2.29 allows a local attacker to increase access privileges to the Windows Registry via an unpublished API.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Synaptics Sound Device | <2.29 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-9730 is a vulnerability in the CxUtilSvc component of the Synaptics Sound Device drivers prior to version 2.29.
CVE-2019-9730 has a severity rating of 8.8, which is considered high.
CVE-2019-9730 allows a local attacker to increase access privileges to the Windows Registry via an unpublished API in the CxUtilSvc component of the Synaptics Sound Device drivers.
To mitigate CVE-2019-9730, update the Synaptics Sound Device drivers to version 2.29 or later.
You can find more information about CVE-2019-9730 at the following references: [1](https://support.lenovo.com/us/en/product_security/LEN-25822), [2](https://twitter.com/Jackson_T), [3](https://www.synaptics.com/company/blog/)