CVE-2024-2208

{"id": "CVE-2024-2208", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "hp-security-alert@hp.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.0}]}, "published": "2024-11-12T20:15:06.323", "references": [{"url": "https://support.hp.com/us-en/document/ish_11567250-11567490-16/hpsbhf03987", "source": "hp-security-alert@hp.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "hp-security-alert@hp.com", "description": [{"lang": "en", "value": "CWE-427"}]}], "descriptions": [{"lang": "en", "value": "Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. Sound Research has released driver updates to mitigate the potential vulnerabilities."}, {"lang": "es", "value": "Se han identificado posibles vulnerabilidades en el paquete de audio de ciertos productos de PC HP que utilizan el controlador Sound Research SECOMN64, lo que podr\u00eda permitir la escalada de privilegios. Sound Research ha publicado actualizaciones de controladores para mitigar las posibles vulnerabilidades."}], "lastModified": "2024-11-13T17:01:16.850", "sourceIdentifier": "hp-security-alert@hp.com"}