CVE-2019-19705

CWE-4283 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 67.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
136
Lenovo Aio300-23isu FirmwareLenovo Aio310-20iap FirmwareLenovo Aio510-22ish Firmware+133 more
Timeline
PublishedDec 26

Description

Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before 6.0.8882.1 and 20KH and 20KG before 6.0.8907.1 (and on many other Lenovo and non-Lenovo products), mishandles DLL preloading.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages136 packages

NVDlenovo/thinkpad_13_firmware< 6.0.8924.1

🔴Vulnerability Details

2
CVEList
CVE-2019-19705: Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before 62022-12-26
GHSA
GHSA-x4q2-pwgr-g2mx: Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before 62022-12-26