exploitDog

GHSA-w6vr-43hm-fg5g

Опубликовано: 09 фев. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests.

Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests.

Ссылки

EPSS

Процентиль: 18%

0.00057

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2021-44903

CVSS3: 7.8

nvd

около 4 лет назад

Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests.

EPSS

Процентиль: 18%

0.00057

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-269