High severity7.8NVD Advisory· Published Aug 10, 2017· Updated Jun 17, 2026
CVE-2017-3751
CVE-2017-3751
Description
An unquoted service path vulnerability was identified in the driver for the ThinkPad Compact USB Keyboard with TrackPoint versions earlier than 1.5.5.0. This could allow an attacker with local privileges to execute code with administrative privileges.
Affected products
2cpe:2.3:a:lenovo:thinkpad_compact_usb_keyboard_driver:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:lenovo:thinkpad_compact_usb_keyboard_driver:-:*:*:*:*:*:*:*
- (no CPE)range: Earlier than 1.5.5.0
Patches
Vulnerability mechanics
References
1- support.lenovo.com/us/en/product_security/LEN-15061nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.