Browse all 6 CVE security advisories affecting Synaptics. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Synaptics specializes in human interface technologies, developing touchpads, fingerprint sensors, and display solutions for computing devices. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from input validation failures and insecure default configurations. While no major public security incidents have been widely documented, the six CVEs on record highlight persistent risks in their software components. Their security posture has shown improvement over time, but legacy implementations in older devices may remain susceptible to exploitation, particularly in embedded systems where patches are infrequently applied.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-11772 | Co-Installer Privilege Escalation — Synaptics Fingerprint DriverCWE-427 | 6.6 | Medium | 2025-12-01 |
| CVE-2024-9157 | Privilege Escalation Vulnerability in CxUIUSvc service — Synaptics Audio DriverCWE-284 | 7.8 | High | 2025-03-11 |
| CVE-2023-5447 | Use-After-Free in Service for Hardware Support App for Fingerprint Driver — Synaptics Fingerprint DriverCWE-414 | 5.5 | Medium | 2024-05-11 |
| CVE-2023-6482 | Encryption key derived from static host information — Synaptics Fingerprint DriverCWE-321 | 5.2 | Medium | 2024-01-27 |
| CVE-2023-4936 | Synaptics-DisplayLink-privilege escalation vulnerability via a dynamic library sideloading — DisplayLink USB Graphics Software for WindowsCWE-269 | 5.5 | Medium | 2023-10-11 |
| CVE-2021-3675 | synaTEE.signed.dll Out-Of-Bounds Heap Write — Synaptics Fingerprint DriverCWE-20 | 5.5 | Medium | 2022-06-16 |
This page lists every published CVE security advisory associated with Synaptics. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.