EUVD-2020-7109

Malware in sbrugna...

CVE-2020-22057

The WinRin0x64.sys and WinRing0.sys low-level drivers in EVGA Precision XOC version v6.2.7 were discovered to be configured with the default security descriptor which allows attackers to access sensitive components and data...

Privilege escalation

Micro-Star International MSI Center Pro = 2.0.16.0 is vulnerable to multiple Privilege Escalation LPE/EoP vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLibX64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by sending...

CVE-2021-44901

Micro-Star International MSI Dragon Center = 2.0.116.0 is vulnerable to multiple Privilege Escalation LPE/EoP vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLibX64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by...

Privilege escalation

Micro-Star International MSI Dragon Center = 2.0.116.0 is vulnerable to multiple Privilege Escalation LPE/EoP vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLibX64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by...

CVE-2021-44903

CVE-2021-44903 affects Micro-Star International (MSI) Center Pro <= 2.0.16.0. The vulnerability set comprises multiple Privilege Escalation (LPE/EoP) flaws in driver components: atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, and WinRing0x64.sys. All flaws a...

CVE-2021-44901

MSI Dragon Center

CVE-2021-44901

Micro-Star International MSI Dragon Center = 2.0.116.0 is vulnerable to multiple Privilege Escalation LPE/EoP vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLibX64.sys, WinRing0.sys, WinRing0x64.sys drivers components. All the vulnerabilities are triggered by...

CVE-2021-44899

CVE-2021-44899 concerns Micro-Star International (MSI) Center <= 1.0.31.0. The connected documents describe multiple privilege escalation vulnerabilities in MSI Center’s driver components (atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys). All...

Design/Logic Flaw

The WinRin0x64.sys and WinRing0.sys low-level drivers in EVGA Precision XOC version v6.2.7 were discovered to be configured with the default security descriptor which allows attackers to access sensitive components and data...

CVE-2020-22057

CVE-2020-22057 affects EVGA Precision XOC v6.2.7, where WinRin0x64.sys and WinRing0.sys low-level drivers are configured with the default security descriptor, enabling network-adjacent attackers to access sensitive components and data. Root cause is insecure access control on privileged drivers; ...

CVE-2020-14979

The WinRing0.sys and WinRing0x64.sys drivers 1.2.0 in EVGA Precision X1 through 1.0.6 allow local users, including low integrity processes, to read and write to arbitrary memory locations. This allows any user to gain NT AUTHORITY\SYSTEM privileges by mapping \Device\PhysicalMemory into the calli...