77 matches found
CVE-2022-38532
Micro-Star International Co., Ltd MSI Center 1.0.50.0 was discovered to contain a vulnerability in the component CFeatures of MSI.CentralServer.exe. This vulnerability allows attackers to escalate privileges via running a crafted executable...
Design/Logic Flaw
Micro-Star International Co., Ltd MSI Center 1.0.50.0 was discovered to contain a vulnerability in the component CFeatures of MSI.CentralServer.exe. This vulnerability allows attackers to escalate privileges via running a crafted executable...
CVE-2022-38532
CVE-2022-38532 affects MSI Center 1.0.50.0, specifically the C_Features component in MSI.CentralServer.exe, enabling local privilege escalation via a crafted executable. Root cause: insecure handling in the Central Server’s feature CMD_AutoUpdateSDK path allows execution of an attacker-supplied P...
CVE-2022-38532
Micro-Star International Co., Ltd MSI Center 1.0.50.0 was discovered to contain a vulnerability in the component CFeatures of MSI.CentralServer.exe. This vulnerability allows attackers to escalate privileges via running a crafted executable...
Micro-Star International MSI Center 安全漏洞
Micro-Star International MSI Center is a monitoring and management platform from Micro-Star International China. All your favorite features can be found on the feature set page, such as Game Mode or Smart Priority. A security vulnerability exists in Micro-Star International MSI Center version...
CVE-2022-34109
An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to write arbitrary files to the directory \PromoPhoto, regardless of file type or size...
CVE-2022-34110
An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to download arbitrary files regardless of file type or size...
Type confusion
An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to download arbitrary files regardless of file type or size...
CVE-2022-34110
The connected records confirm CVE-2022-34110 affects Micro-Star International (MSI) Feature Navigator v1.0.1808.0901, with a root cause allowing attackers to download arbitrary files regardless of type or size. This is documented in Red Hat CVE entries (RH:CVE-2022-34110) and NVD/NVD-related page...
CVE-2022-34109
An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to write arbitrary files to the directory \PromoPhoto, regardless of file type or size...
CVE-2022-34109
CVE-2022-34109 affects MSI Feature Navigator v1.0.1808.0901; the issue allows local attackers to write arbitrary files into the PromoPhoto directory, enabling potential arbitrary file write. CVE-2022-34110 enables attackers to download arbitrary files, also affecting the same MSI component. CVE-2...
CVE-2022-34108
CVE-2022-34108/34109/34110 affect Micro-Star MSI Feature Navigator v1.0.1808.0901. Red Hat advisories: CVE-2022-34109 allows writing arbitrary files to the PromoPhoto directory; CVE-2022-34110 allows downloading arbitrary files regardless of type/size (PRION page cites type confusion as possible ...
CVE-2022-34108
An issue in the Feature Navigator of Micro-Star International MSI Feature Nagivator v1.0.1808.0901 allows attackers to cause a Denial of Service DoS via a crafted image or video file...
Micro-Star International MSI Feature Navigator 安全漏洞
Micro-Star International MSI Feature Navigator is a feature navigator from Micro-Star International China. A security vulnerability exists in Micro-Star International MSI Feature Navigator version v1.0.1808.0901. An attacker can exploit the vulnerability to write and copy arbitrary files to the...
PT-2022-22008 · Micro Star International · Msi Feature Navigator
Name of the Vulnerable Software and Affected Versions: Micro-Star International MSI Feature Navigator version 1.0.1808.0901 Description: An issue in the software allows attackers to write arbitrary files to the directory PromoPhoto, regardless of file type or size. Recommendations: For version...
PT-2022-22009 · Micro Star International · Msi Feature Navigator
Name of the Vulnerable Software and Affected Versions: Micro-Star International MSI Feature Navigator version 1.0.1808.0901 Description: An issue in the software allows attackers to download arbitrary files, regardless of the file type or size. Recommendations: For version 1.0.1808.0901, consider...
Micro-Star International MSI Feature Nagivator 安全漏洞
Micro-Star International MSI Feature Navigator is a feature navigator from Micro-Star International China. A security vulnerability exists in Micro-Star International MSI Feature Nagivator version v1.0.1808.0901. An attacker can exploit this vulnerability to cause a denial of service DoS via a...
Micro-Star International MSI Feature Navigator v1.0.1808.0901 安全漏洞
Micro-Star International MSI Feature Navigator is a feature navigator from Micro-Star International China. A security vulnerability exists in Micro-Star International MSI Feature Navigator version v1.0.1808.0901. An attacker can exploit this vulnerability to download arbitrary files from an...
EDRSandblast - Tool That Weaponize A Vulnerable Signed Driver To Bypass EDR Detections And LSASS Protections
EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections Kernel callbacks and ETW TI provider and LSASS protections. Multiple userland unhooking techniques are also implemented to evade userland monitoring. As of release, combination of userland...
CVE-2021-44903
Micro-Star International MSI Center Pro = 2.0.16.0 is vulnerable to multiple Privilege Escalation LPE/EoP vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLibX64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending...