CVE-2025-10576 PoC — HP PC Sound Research SECOMN64 安全漏洞

Source

https://github.com/R41N3RZUF477/CVE-2025-10576

Associated Vulnerability

Title:HP PC Sound Research SECOMN64 安全漏洞 (CVE-2025-10576)
Description:HP PC Sound Research SECOMN64是美国惠普（HP）公司的一个音频处理软件组件。 HP PC Sound Research SECOMN64存在安全漏洞，该漏洞源于音频包存在潜在问题，可能导致权限提升。

Description

HP Sound Research SECOMNService Escalation of Privilege

Readme

# CVE-2025-10576

HP Sound Research SECOMNService Escalation of Privilege. Weak registry permissions allows any user to create a registry symlink and force the SECOMNService service to create an arbitrary registry key.

**How to:**

    1. soundresearch_poc.exe prepare
    2. Restart SECOMNService or the machine
    3. soundresearch_poc.exe exploit "whoami /all > C:\Windows\soundresearch.txt"
	4. soundresearch_poc.exe exploit "*another command*"
	5. soundresearch_poc.exe cleanup

Reference: https://support.hp.com/us-en/document/ish_13092608-13092602-16/hpsbhf04051

File Snapshot


 [4.0K]  /data/pocs/45fc8e7ce9b555353a680fe63c1e0ce752337efd
├── [ 571]  README.md
└── [3.9K]  soundresearch_poc.c

1 directory, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!