First published: Wed Jan 25 2023(Updated: )
An improper access control vulnerability was identified in the Realtek audio driver. A local authenticated malicious user may potentially exploit this vulnerability by waiting for an administrator to launch the application and attach to the process to elevate privileges on the system.
Credit: security_alert@emc.com security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell Realtek High Definition Audio Driver | <6.0.9433.1 | |
Dell Alienware M15 Ryzen Edition R5 | ||
Dell G15 5515 | ||
Dell Realtek High Definition Audio Driver | <6.0.9400.1 | |
Dell Alienware M15 R6 | ||
Dell G15 5510 | ||
Dell G15 5511 | ||
Dell Realtek High Definition Audio Driver | <6.0.9394.1 | |
Dell Alienware Area 51m R1 | ||
Dell Alienware Area 51m R2 | ||
Dell Alienware Aurora R10 | ||
Dell Alienware Aurora R11 | ||
Dell Alienware Aurora R12 | ||
Dell Alienware Aurora R8 | ||
Dell Alienware Aurora R9 | ||
Dell Alienware M15 R1 | ||
Dell Alienware M15 R2 | ||
Dell Alienware M15 R3 | ||
Dell Alienware M15 R4 | ||
Dell Alienware M17 R1 | ||
Dell Alienware M17 R2 | ||
Dell Alienware M17 R3 | ||
Dell Alienware M17 R4 | ||
Dell G5 5000 | ||
Dell G5 5090 | ||
Dell G5 5590 | ||
Dell G7 7590 | ||
Dell G7 7790 | ||
Dell Realtek High Definition Audio Driver | <6.0.9407.1 | |
Dell G7 7500 | ||
Dell G7 7700 | ||
Dell Realtek High Definition Audio Driver | <6.0.9388.1 | |
Dell Alienware Aurora R13 | ||
Dell Alienware X15 R1 | ||
Dell Alienware X17 R1 | ||
Dell Realtek High Definition Audio Driver | <6.0.9254.1 | |
Dell G3 3590 | ||
Dell Realtek High Definition Audio Driver | <6.0.9422.1 | |
Dell G3 3500 | ||
Dell G5 5500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this security issue is CVE-2022-34405.
The severity rating of CVE-2022-34405 is 7.3 (High).
The Dell Realtek High Definition Audio Driver versions up to and including 6.0.9433.1 are affected.
A local authenticated malicious user can potentially exploit CVE-2022-34405 by waiting for an administrator to launch the application and attach to the process to elevate privileges on the system.
More information about CVE-2022-34405 can be found at: https://www.dell.com/support/kbdoc/en-us/000205721/dsa-2022-316-dell-client-security-update-for-a-realtek-high-definition-audio-driver-vulnerability