PT-2023-13383 · Realtek · Realtek Audio Driver

Khangkito

Publicado

2023-01-25

Atualizado

2023-07-21

CVE-2022-34405

CVSS v3.1

7.3

Alta

Vetor

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Realtek audio driver (affected versions not specified)

Description An improper access control issue was identified. A local authenticated malicious user may potentially exploit this by waiting for an administrator to launch the application and then attach to the process to elevate privileges on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-285

Identificadores relacionados

CVE-2022-34405

Produtos afetados

Realtek Audio Driver

PT-2023-13383 · Realtek · Realtek Audio Driver

CVE-2022-34405

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3