CVE-2024-2208

HIGH

Sound Research SECOMN64 Driver - Uncontrolled Search Path Element

Title source: llm

Description

Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. Sound Research has released driver updates to mitigate the potential vulnerabilities.

References (1)

Core 1

Core References

Various Sources

https://support.hp.com/us-en/document/ish_11567250-11567490-16/hpsbhf03987

Scores

CVSS v3 8.8

EPSS 0.0017

EPSS Percentile 6.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-427

Status published

Products (1)

Sound Research/SECOMN64 Driver See HP Security Bulletin reference for affected versions.

Published Nov 12, 2024

Tracked Since Feb 18, 2026