What is CVE-2019-10724?

CVE-2019-10724 is a medium-severity vulnerability in Lenovo 100e_2nd_gen. CVSS score: 6.5/10. Published 2019-08-29.

How severe is CVE-2019-10724?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Lenovo 100e_2nd_gen

CVE-2019-10724

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected products and versions: Legion Y520T_Z370 6…

EPSS: 0.012 (64.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Lenovo 100e_2nd_gen
Lenovo 100e_2nd_gen_firmware
Lenovo 300e_2nd_gen
Lenovo 300e_2nd_gen_firmware
Lenovo 330-14ikbr
Lenovo 330-14ikbr_firmware
Lenovo 330-15ikbr
Lenovo 330-15ikbr_firmware
Lenovo 330-15ikbr_touch
Lenovo 330-15ikbr_touch_firmware

References

cve@mitre.org (x_refsource_MISC, Vendor Advisory)
cve@mitre.org (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2019-10724?: CVE-2019-10724 is a medium-severity vulnerability in Lenovo 100e_2nd_gen. CVSS score: 6.5/10. Published 2019-08-29.
How severe is CVE-2019-10724?: Medium severity. CVSS v3 base score is 6.5 out of 10.