Privilege escalation in Dell Realtek High Definition Audio Driver
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2022-34405 |
| CWE-ID | CWE-284 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Alienware m15 Ryzen Edition R5 Hardware solutions / Firmware Alienware m15 R6 Hardware solutions / Firmware Dell G5 5090 Hardware solutions / Firmware Dell G5 5000 Hardware solutions / Firmware Alienware Area 51m R2 Hardware solutions / Firmware Dell G7 7500 Hardware solutions / Firmware Dell G7 7700 Hardware solutions / Firmware Alienware x15 R1 Hardware solutions / Firmware Alienware x17 R1 Hardware solutions / Firmware Alienware m15 R1 Hardware solutions / Firmware Alienware m17 R1 Hardware solutions / Firmware Dell Gaming G3 3590 Hardware solutions / Firmware Dell G3 3500 Hardware solutions / Firmware Dell G5 5500 Hardware solutions / Firmware Alienware Area 51m R1 Hardware solutions / Firmware Alienware Aurora R8 Hardware solutions / Firmware Dell G15 5515 Hardware solutions / Firmware Dell G15 5510 Hardware solutions / Firmware Dell G15 5511 Hardware solutions / Firmware Alienware Aurora R10 Hardware solutions / Firmware Alienware Aurora R9 Hardware solutions / Firmware Alienware Aurora R11 Hardware solutions / Firmware Alienware Aurora R12 Hardware solutions / Firmware Alienware m15 R3 Hardware solutions / Firmware Alienware m15 R4 Hardware solutions / Firmware Alienware m17 R3 Hardware solutions / Firmware Alienware m17 R4 Hardware solutions / Firmware Dell G5 5590 Hardware solutions / Firmware Dell G7 7590 Hardware solutions / Firmware Dell G7 7790 Hardware solutions / Firmware Alienware Aurora R13 Hardware solutions / Firmware Alienware m15 R2 Hardware solutions / Firmware Alienware m17 R2 Hardware solutions / Firmware Realtek High Definition Audio Driver Hardware solutions / Drivers Realtek Audio Console Application Client/Desktop applications / Other client software |
| Vendor | Dell |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Improper access control
EUVDB-ID: #VU70440
Risk: Low
CVSSv4.0: 3.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-34405
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system
The vulnerability exists due to improper access restrictions. A local user can wait for an administrator to launch the application, attach to this process and execute arbitrary code with elevated privileges.
Install updates from vendor's website.
| Product | Module | Update Version | Release Date |
| Alienware m15 Ryzen Edition R5 | Realtek High Definition Audio Driver | 6.0.9433.1 | 12-13-2022 |
| Alienware m15 R6 | Realtek High Definition Audio Driver | 6.0.9400.1 | 10-20-2022 |
| Dell G5 5090 | Realtek High Definition Audio Driver | 6.0.9394.1 | 10-13-2022 |
| Dell G5 5000 | Realtek High Definition Audio Driver | 6.0.9394.1 | 10-13-2022 |
| Alienware Area 51m R2 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Dell G7 7500 | Realtek High Definition Audio Driver | 6.0.9407.1 | 10-18-2022 |
| Dell G7 7700 | Realtek High Definition Audio Driver | 6.0.9407.1 | 10-18-2022 |
| Alienware x15 R1 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9388.1 1.37.275.0 |
09-12-2022 |
| Alienware x17 R1 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9388.1 1.37.275.0 |
09-12-2022 |
| Alienware m15 R1 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-13-2022 |
| Alienware m17 R1 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-13-2022 |
| Dell Gaming G3 3590 | Realtek High Definition Audio Driver | 6.0.9254.1 | 10-25-2022 |
| Dell G3 3500 | Realtek High Definition Audio Driver | 6.0.9422.1 | 10-31-2022 |
| Dell G5 5500 | Realtek High Definition Audio Driver | 6.0.9422.1 | 10-31-2022 |
| Alienware Area 51m R1 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Alienware Aurora R8 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-12-2022 |
| Dell G15 5515 | Realtek High Definition Audio Driver | 6.0.9433.1 | 12-13-2022 |
| Dell G15 5510 | Realtek High Definition Audio Driver | 6.0.9400.1 | 10-27-2022 |
| Dell G15 5511 | Realtek High Definition Audio Driver | 6.0.9400.1 | 10-26-2022 |
| Alienware Aurora R10 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-12-2022 |
| Alienware Aurora R9 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-13-2022 |
| Alienware Aurora R11 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-12-2022 |
| Alienware Aurora R12 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-12-2022 |
| Alienware m15 R3 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Alienware m15 R4 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Alienware m17 R3 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Alienware m17 R4 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Dell G5 5590 | Realtek High Definition Audio Driver | 6.0.9394.1 | 10-11-2022 |
| Dell G7 7590 | Realtek High Definition Audio Driver | 6.0.9394.1 | 10-11-2022 |
| Dell G7 7790 | Realtek High Definition Audio Driver | 6.0.9394.1 | 10-11-2022 |
| Alienware Aurora R13 | Realtek High Definition Audio Driver | 6.0.9388.1 | 10-12-2022 |
| Alienware m15 R2 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
| Alienware m17 R2 | Realtek High Definition Audio Driver Realtek Audio Console Application |
6.0.9394.1 1.37.275.0 |
10-19-2022 |
Alienware m15 Ryzen Edition R5: All versions
Alienware m15 R6: All versions
Dell G5 5090: All versions
Dell G5 5000: All versions
Alienware Area 51m R2: All versions
Dell G7 7500: All versions
Dell G7 7700: All versions
Alienware x15 R1: All versions
Alienware x17 R1: All versions
Alienware m15 R1: All versions
Alienware m17 R1: All versions
Dell Gaming G3 3590: All versions
Dell G3 3500: All versions
Dell G5 5500: All versions
Alienware Area 51m R1: All versions
Alienware Aurora R8: All versions
Dell G15 5515: All versions
Dell G15 5510: All versions
Dell G15 5511: All versions
Alienware Aurora R10: All versions
Alienware Aurora R9: All versions
Alienware Aurora R11: All versions
Alienware Aurora R12: All versions
Alienware m15 R3: All versions
Alienware m15 R4: All versions
Alienware m17 R3: All versions
Alienware m17 R4: All versions
Dell G5 5590: All versions
Dell G7 7590: All versions
Dell G7 7790: All versions
Alienware Aurora R13: All versions
Alienware m15 R2: All versions
Alienware m17 R2: All versions
Realtek High Definition Audio Driver: before 6.0.9254.1
Realtek Audio Console Application: before 1.37.275.0
CPE2.3- cpe:2.3:h:dell:alienware_m15_ryzen_edition_r5:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m15_r6:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g5_5090:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g5_5000:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_area_51m_r2:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g7_7500:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g7_7700:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_x15_r1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_x17_r1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m15_r1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m17_r1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_gaming_g3_3590:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g3_3500:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g5_5500:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_area_51m_r1:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_aurora_r8:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g15_5515:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g15_5510:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g15_5511:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_aurora_r10:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_aurora_r9:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_aurora_r11:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_aurora_r12:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m15_r3:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m15_r4:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m17_r3:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m17_r4:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g5_5590:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g7_7590:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:dell_g7_7790:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_aurora_r13:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m15_r2:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:alienware_m17_r2:*:*:*:*:*:*:*:*
- cpe:2.3:h:dell:realtek_high_definition_audio_driver:*:*:*:*:*:*:*:*
- cpe:2.3:a:dell:realtek_audio_console_application:*:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
