CVE-2024-33225

HIGH

Realtek High Definition Audio Function Driver 6.0.9549.1 - Privilege Escalation

Title source: llm

Description

An issue in the component RTKVHD64.sys of Realtek Semiconductor Corp Realtek(r) High Definition Audio Function Driver v6.0.9549.1 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.

References (1)

Core 1

Core References

Various Sources

https://github.com/DriverHunter/Win-Driver-EXP/tree/main/CVE-2024-33225

View Writeup ZIP pw:eip

Scores

CVSS v3 7.8

EPSS 0.0022

EPSS Percentile 12.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-94

Status published

Published May 22, 2024

Tracked Since Feb 18, 2026