Vulnerabilities > CVE-2024-45383 - Unspecified vulnerability in Microsoft High Definition Audio BUS Driver 10.0.19041.3636

CVSS 5.0 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

microsoft

NVD

Published: 2024-09-12

Updated: 2024-11-21

Summary

A mishandling of IRP requests vulnerability exists in the HDAudBus_DMA interface of Microsoft High Definition Audio Bus Driver 10.0.19041.3636 (WinBuild.160101.0800). A specially crafted application can issue multiple IRP Complete requests which leads to a local denial-of-service. An attacker can execute malicious script/application to trigger this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft High Definition Audio BUS Driver 10.0.19041.3636	1

References

https://talosintelligence.com/vulnerability_reports/TALOS-2024-2008
https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2008