CVE-2019-9730

HIGH

Synaptics Sound Device <2.29 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-9730. PoCs published by jthuraisamy, scaery.

AI-analyzed exploit summary This is a functional local privilege escalation (LPE) exploit for CVE-2019-9730, targeting the Conexant Audio Driver's CxUtilSvc service. It leverages a COM object to modify registry keys and execute commands as SYSTEM by manipulating service paths.

Description

Incorrect access control in the CxUtilSvc component of the Synaptics Sound Device drivers prior to version 2.29 allows a local attacker to increase access privileges to the Windows Registry via an unpublished API.

Exploits (2)

nomisec WORKING POC 37 stars

by jthuraisamy · poc

https://github.com/jthuraisamy/CVE-2019-9730

View Code ZIP pw:eip

This is a functional local privilege escalation (LPE) exploit for CVE-2019-9730, targeting the Conexant Audio Driver's CxUtilSvc service. It leverages a COM object to modify registry keys and execute commands as SYSTEM by manipulating service paths.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Conexant Audio Driver CxUtilSvc (v2.12.0.0)

Auth required

Prerequisites: Low-privileged access to a vulnerable system · Conexant Audio Driver with vulnerable CxUtilSvc service installed · Ability to stop/start a vulnerable service (e.g., 'ose')

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.002 - Bypass User Account Control T1112 - Modify Registry

devstral-2 · analyzed Feb 16, 2026 Full analysis →

gitlab WORKING POC

by scaery · poc

https://gitlab.com/scaery/CVE-2019-9730

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2019-9730, which leverages a COM object in the Conexant Audio Driver to perform arbitrary registry reads/writes as SYSTEM. The exploit modifies a service's ImagePath to execute arbitrary commands, achieving local privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Conexant Audio Driver (CxUtilSvc.exe < v2.29.0.0)

No auth needed

Prerequisites: Low-privileged access to a vulnerable system · Presence of a stoppable service (e.g., 'ose')

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory x_refsource_misc

https://www.synaptics.com/company/blog/

Exploit, Third Party Advisory x_refsource_misc

https://twitter.com/Jackson_T

Vendor Advisory x_refsource_confirm

https://support.lenovo.com/us/en/product_security/LEN-25822

Scores

CVSS v3 8.8

EPSS 0.0100

EPSS Percentile 58.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

Status published

Products (1)

synaptics/sound_device < 2.29

Published Jun 05, 2019

Tracked Since Feb 18, 2026