CVE-2025-10576 HIGH

CVE-2025-10576: Sound Research SECOMNService Escalation of Privilege

Vendor Hp, Inc.
Product Sound Research
Weakness CWE-266
Published October 15, 2025
Last update February 26, 2026

CVSS base score

8.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. HP is releasing updated audio packages to mitigate the potential vulnerabilities.

Key dates

02Disclosure timeline

October 15, 2025 CVE published
February 26, 2026 Record updated