CVE-2017-8360

Published May 12, 2017

Last updated 8 years ago

CVSS medium 5.5

Overview

Description: Conexant Systems mictray64 task, as used on HP Elite, EliteBook, ProBook, and ZBook systems, leaks sensitive data (keystrokes) to any process. In mictray64.exe (mic tray icon) 1.0.0.46, a LowLevelKeyboardProc Windows hook is used to capture keystrokes. This data is leaked via unintended channels: debug messages accessible to any process that is running in the current user session, and filesystem access to C:\Users\Public\MicTray.log by any process.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:conexant:mictray64:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5B82B26-35F7-4580-83C3-8961F3267232",
            "versionEndIncluding": "1.0.0.46"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:hp:elite_x2_1012_g1:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0160130B-8BCB-41A6-A7A5-B03A5083EF11"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_1030_g1:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F0A39EC7-86EE-458D-8743-7E139E28C18A"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_725_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0DBD4012-6ABA-4EC5-8CE5-4BA947D660FD"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_745_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "056188C4-E214-4C71-8D84-5B7FF34146D2"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_755_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6A69E93D-B289-4777-BDD0-B4AAA62441DB"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_820_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DCD06E7E-045C-4A57-9197-1B12F686514C"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_828_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CDAA1D9A-0191-4113-9A64-F7859E95870D"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_840_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A67B506C-A2CD-4B4B-81C9-AB03B9164EFD"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_848_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EDFE7CE8-7270-4E92-A659-D2B842604E83"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_850_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "17B61731-7ADD-4CB5-AE0D-0DA1D6C9C000"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_folio_1040_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EDB7C8C9-7CF2-4EE3-8BD3-0A9573DDFB61"
          },
          {
            "criteria": "cpe:2.3:h:hp:elitebook_folio_g1:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A855CCBF-BA02-426E-A645-B8B43F34F26D"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_430_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1197F876-9F8E-4311-9D55-683BCDFA1BAD"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_440_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0AC8772B-7770-40FF-A45E-65D55EF53335"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_446_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "772EA71F-0A1F-4D96-A3CE-72F685FEDA0C"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_450_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "887F7997-005D-4BCB-B607-AC0295B4A3D4"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_455_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C4463B3F-3B8E-40E0-94E1-9CB1F2D342C0"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_470_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "569E785F-531A-47E8-ABD9-C5B6325E5AB5"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_640_g2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "61C10BE5-F877-4E67-A05A-975D3127303D"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_645_g2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "11D94E4D-69E9-4B7A-8AD5-D84E0D88783F"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_650_g2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "916C65AC-F54E-4C1D-8BC1-357E6C066186"
          },
          {
            "criteria": "cpe:2.3:h:hp:probook_655_g2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CBCCF83E-D3BA-44EC-AF21-80D92BA84DAF"
          },
          {
            "criteria": "cpe:2.3:h:hp:zbook_15_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D8577621-8CE8-4C94-9E37-A0A1AD76567C"
          },
          {
            "criteria": "cpe:2.3:h:hp:zbook_15u_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "87151407-3BCE-4716-BEF9-3482F858D8FE"
          },
          {
            "criteria": "cpe:2.3:h:hp:zbook_17_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE3D4433-E6DC-403B-B0B1-878121AA0EFD"
          },
          {
            "criteria": "cpe:2.3:h:hp:zbook_studio_g3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "81015892-0FAB-4A12-8B58-2ABBAB369506"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FBC814B4-7DEC-4EFC-ABFF-08FFD9FD16AA"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D56B932B-9593-44E2-B610-E4EB2143EB21"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References