PT-2024-19184 · Sound Research · Sound Research Secomn64
Published
2024-11-12
·
Updated
2024-11-13
·
CVE-2024-2207
CVSS v3.1
6.0
Medium
| Vector | AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
HP PC products using the Sound Research SECOMN64 driver (affected versions not specified)
Description
The issue is related to potential vulnerabilities in the audio package for certain HP PC products, specifically those using the Sound Research SECOMN64 driver. These vulnerabilities might allow escalation of privilege. The risk is locally exploitable.
Recommendations
Upgrade the Sound Research SECOMN64 driver to the latest version to mitigate the potential vulnerabilities.
As a temporary workaround, consider restricting access to the vulnerable driver until a patch is available.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sound Research Secomn64