CVE-2025-10577

HIGH

HP PC < - Privilege Escalation

Title source: llm

Description

Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. HP is releasing updated audio packages to mitigate the potential vulnerabilities

References (1)

[Various Sources] https://support.hp.com/us-en/document/ish_13092608-13092602-16/hpsbhf04051

Scores

CVSS v4 8.5

EPSS 0.0002

EPSS Percentile 5.0%

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-266

Status published

Products (1)

HP, Inc./Sound Research See HP security bulletin reference for affected versions

Published Oct 15, 2025

Tracked Since Feb 18, 2026