CVE-2025-10577

HIGH

HP Sound Research SECOMN64 Driver - Incorrect Privilege Assignment

Title source: llm

Description

Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. HP is releasing updated audio packages to mitigate the potential vulnerabilities

References (1)

Core 1

Core References

Various Sources

https://support.hp.com/us-en/document/ish_13092608-13092602-16/hpsbhf04051

Scores

CVSS v4 8.5

EPSS 0.0012

EPSS Percentile 2.1%

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-266

Status published

Products (1)

HP, Inc./Sound Research See HP security bulletin reference for affected versions

Published Oct 15, 2025

Tracked Since Feb 18, 2026