Vulnerabilities > CVE-2022-34405 - Unspecified vulnerability in Dell Realtek High Definition Audio Driver

CVSS 7.3 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

dell

NVD

Published: 2023-01-26

Updated: 2023-11-07

Summary

An improper access control vulnerability was identified in the Realtek audio driver. A local authenticated malicious user may potentially exploit this vulnerability by waiting for an administrator to launch the application and attach to the process to elevate privileges on the system.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Realtek High Definition Audio Driver - Dell Realtek High Definition Audio Driver 6.0.9254.1 Dell Realtek High Definition Audio Driver 6.0.9388.1 Dell Realtek High Definition Audio Driver 6.0.9394.1 Dell Realtek High Definition Audio Driver 6.0.9400.1 Dell Realtek High Definition Audio Driver 6.0.9407.1 Dell Realtek High Definition Audio Driver 6.0.9422.1	7
Hardware	Dell Dell Alienware M15 Ryzen Edition R5 - Dell G15 5515 - Dell Alienware M15 R6 - Dell G15 5510 - Dell G15 5511 - Dell Alienware Area 51M R1 - Dell Alienware Area 51M R2 - Dell Alienware Aurora R10 - Dell Alienware Aurora R11 - Dell Alienware Aurora R12 - Dell Alienware Aurora R8 - Dell Alienware Aurora R9 - Dell Alienware M15 R1 - Dell Alienware M15 R2 - Dell Alienware M15 R3 - Dell Alienware M15 R4 - Dell Alienware M17 R1 - Dell Alienware M17 R2 - Dell Alienware M17 R3 - Dell Alienware M17 R4 - Dell G5 5000 - Dell G5 5090 - Dell G5 5590 - Dell G7 7590 - Dell G7 7790 - Dell G7 7500 - Dell G7 7700 - Dell Alienware Aurora R13 - Dell Alienware X15 R1 - Dell Alienware X17 R1 - Dell G3 3590 - Dell G3 3500 - Dell G5 5500 -	33

References

https://www.dell.com/support/kbdoc/en-us/000205721/dsa-2022-316-dell-client-security-update-for-a-realtek-high-definition-audio-driver-vulnerability