High severity7.8NVD Advisory· Published Aug 29, 2017· Updated Jun 17, 2026
CVE-2017-3757
CVE-2017-3757
Description
An unquoted service path vulnerability was identified in the driver for the ElanTech Touchpad, various versions, used on some Lenovo brand notebooks (not ThinkPads). This could allow an attacker with local privileges to execute code with administrative privileges.
Affected products
2- cpe:2.3:a:emc:elan_touchpad_driver:*:*:*:*:*:*:*:*Range: <=11.4.1.6
- Lenovo Group Ltd./Lenovo ElanTech Touchpad driverv5Range: various versions
Patches
Vulnerability mechanics
References
1- support.lenovo.com/us/en/product_security/LEN-14390nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.