Vulnerability Description
An improper access control vulnerability was identified in the Realtek audio driver. A local authenticated malicious user may potentially exploit this vulnerability by waiting for an administrator to launch the application and attach to the process to elevate privileges on the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Realtek High Definition Audio Driver | < 6.0.9433.1 |
| Dell | Alienware M15 Ryzen Edition R5 | - |
| Dell | G15 5515 | - |
| Dell | Alienware M15 R6 | - |
| Dell | G15 5510 | - |
| Dell | G15 5511 | - |
| Dell | Alienware Area 51M R1 | - |
| Dell | Alienware Area 51M R2 | - |
| Dell | Alienware Aurora R10 | - |
| Dell | Alienware Aurora R11 | - |
| Dell | Alienware Aurora R12 | - |
| Dell | Alienware Aurora R8 | - |
| Dell | Alienware Aurora R9 | - |
| Dell | Alienware M15 R1 | - |
| Dell | Alienware M15 R2 | - |
| Dell | Alienware M15 R3 | - |
| Dell | Alienware M15 R4 | - |
| Dell | Alienware M17 R1 | - |
| Dell | Alienware M17 R2 | - |
| Dell | Alienware M17 R3 | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000205721/dsa-2022-316-dell-client-secuVendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000205721/dsa-2022-316-dell-client-secuVendor Advisory
FAQ
What is CVE-2022-34405?
CVE-2022-34405 is a vulnerability with a CVSS score of 7.3 (HIGH). An improper access control vulnerability was identified in the Realtek audio driver. A local authenticated malicious user may potentially exploit this vulnerability by waiting for an administrator to ...
How severe is CVE-2022-34405?
CVE-2022-34405 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-34405?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Realtek High Definition Audio Driver, Dell Alienware M15 Ryzen Edition R5, Dell G15 5515, Dell Alienware M15 R6, Dell G15 5510.