CVE-2025-10576

HIGH

HP Sound Research SECOMN64 Driver - Incorrect Privilege Assignment

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-10576. PoCs published by R41N3RZUF477.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2025-10576, which leverages weak registry permissions in HP Sound Research SECOMNService to create a registry symlink and escalate privileges. The exploit prepares the environment, sets a debugger value in the registry, and triggers execution via a scheduled task.

Description

Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. HP is releasing updated audio packages to mitigate the potential vulnerabilities.

Exploits (1)

github WORKING POC 2 stars
by R41N3RZUF477 · cpoc
https://github.com/R41N3RZUF477/CVE-2025-10576

This repository contains a functional exploit for CVE-2025-10576, which leverages weak registry permissions in HP Sound Research SECOMNService to create a registry symlink and escalate privileges. The exploit prepares the environment, sets a debugger value in the registry, and triggers execution via a scheduled task.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: HP Sound Research SECOMNService
Auth required
Prerequisites: Local access to the system · SECOMNService running · Ability to restart the service or machine
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v4 8.5
EPSS 0.0002
EPSS Percentile 6.7%
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-266
Status published
Products (1)
HP, Inc./Sound Research See HP security bulletin reference for affected versions
Published Oct 15, 2025
Tracked Since Feb 18, 2026