CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-34110
https://notcve.org/view.php?id=CVE-2022-34110
12 Sep 2022 — An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to download arbitrary files regardless of file type or size. Un problema en Micro-Star International MSI Feature Navigator versión v1.0.1808.0901, permite a atacantes descargar archivos arbitrarios independientemente del tipo o tamaño del archivo • http://micro-star.com •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-34109
https://notcve.org/view.php?id=CVE-2022-34109
12 Sep 2022 — An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to write arbitrary files to the directory \PromoPhoto\, regardless of file type or size. Un problema en Micro-Star International MSI Feature Navigator versión v1.0.1808.0901, permite a atacantes escribir archivos arbitrarios en el directorio \PromoPhoto\, independientemente del tipo o tamaño del archivo • http://micro-star.com •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-34108
https://notcve.org/view.php?id=CVE-2022-34108
12 Sep 2022 — An issue in the Feature Navigator of Micro-Star International MSI Feature Nagivator v1.0.1808.0901 allows attackers to cause a Denial of Service (DoS) via a crafted image or video file. Un problema en Feature Navigator de Micro-Star International MSI Feature Nagivator versión v1.0.1808.0901, permite a atacantes causar una Denegación de Servicio (DoS) por medio de un archivo de imagen o vídeo diseñado • http://micro-star.com •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-44903
https://notcve.org/view.php?id=CVE-2021-44903
04 Feb 2022 — Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests. Micro-Star International (MSI) Center Pro versiones anteriores a 2.0.16.0 incluyéndola, es vulnerable a múltiples vulnerabilidades de escalada de privilegios (LPE/EoP) en los component... • https://voidsec.com •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-44901
https://notcve.org/view.php?id=CVE-2021-44901
04 Feb 2022 — Micro-Star International (MSI) Dragon Center <= 2.0.116.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests. Micro-Star International (MSI) Dragon Center versiones anteriores a 2.0.116.0 incluyéndola, es vulnerable a múltiples vulnerabilidades de escalada de privilegios (LPE/EoP) en los c... • https://voidsec.com •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-44900
https://notcve.org/view.php?id=CVE-2021-44900
04 Feb 2022 — Micro-Star International (MSI) App Player <= 4.280.1.6309 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the NTIOLib_X64.sys and BstkDrv_msi2.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests. Micro-Star International (MSI) App Player versiones anteriores a 4.280.1.6309 incluyéndola, es vulnerable a múltiples vulnerabilidades de escalada de privilegios (LPE/EoP) en los componentes de los controladores NTIOLib_X64.sys y BstkDrv_msi2.... • https://voidsec.com •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-44899
https://notcve.org/view.php?id=CVE-2021-44899
04 Feb 2022 — Micro-Star International (MSI) Center <= 1.0.31.0 is vulnerable to multiple Privilege Escalation vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending specific IOCTL requests. Micro-Star International (MSI) Center versiones anteriores a 1.0.31.0 incluyéndola, es vulnerable a múltiples vulnerabilidades de escalada de privilegios en los componentes de los controladores atid... • https://voidsec.com •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-29337
https://notcve.org/view.php?id=CVE-2021-29337
21 Jun 2021 — MODAPI.sys in MSI Dragon Center 2.0.104.0 allows low-privileged users to access kernel memory and potentially escalate privileges via a crafted IOCTL 0x9c406104 call. This IOCTL provides the MmMapIoSpace feature for mapping physical memory. Un archivo MODAPI.sys en MSI Dragon Center versión 2.0.104.0, permite a usuarios poco privilegiados acceder a la memoria del kernel y potencialmente escalar privilegios por medio de una llamada IOCTL 0x9c406104 diseñada. Esta IOCTL proporciona la funcionalidad MmMapIoSpa... • https://github.com/rjt-gupta/CVE-2021-29337 •
CVSS: 9.8EPSS: 22%CPEs: 1EXPL: 3CVE-2021-27965
https://notcve.org/view.php?id=CVE-2021-27965
05 Mar 2021 — The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request. El controlador MsIo64.sys versiones anteriores a 1.1.19.1016 en MSI Dragon Center versiones anteriores a 2.0.98.0, presenta un desbordamiento del búfer que permite una escalada de privilegios por medio de una petición diseñada de IOCTL 0x80102040, 0x80102044, 0x80102050 o 0x80102054 • https://github.com/mathisvickie/CVE-2021-27965 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 11%CPEs: 2EXPL: 8CVE-2020-17382 – MSI Ambient Link Driver 1.0.0.8 - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2020-17382
28 Sep 2020 — The MSI AmbientLink MsIo64 driver 1.0.0.8 has a Buffer Overflow (0x80102040, 0x80102044, 0x80102050,and 0x80102054). El controlador MsIo64 de MSI AmbientLink versión 1.0.0.8, presenta un desbordamiento del búfer (0x80102040, 0x80102044, 0x80102050 y 0x80102054) MSI Ambient Link Driver version 1.0.0.8 suffers from a local privilege escalation vulnerability. • https://packetstorm.news/files/id/159315 • CWE-787: Out-of-bounds Write •