Vulnerabilities > MSI

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2021-32415 Unspecified vulnerability in MSI Wrapper
EXEMSI MSI Wrapper Versions prior to 10.0.50 and at least since version 6.0.91 will introduce a local privilege escalation vulnerability in installers it creates.
local
low complexity
msi
7.8
2022-11-28 CVE-2022-31877 Insufficient Verification of Data Authenticity vulnerability in MSI Center 1.0.41.0
An issue in the component MSI.TerminalServer.exe of MSI Center v1.0.41.0 allows attackers to escalate privileges via a crafted TCP packet.
network
low complexity
msi CWE-345
8.8
2022-02-04 CVE-2021-44903 Unspecified vulnerability in MSI Center PRO 2.0.16.0
Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components.
local
low complexity
msi
4.6
2022-02-04 CVE-2021-44899 Unspecified vulnerability in MSI Center 1.0.31.0
Micro-Star International (MSI) Center <= 1.0.31.0 is vulnerable to multiple Privilege Escalation vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components.
local
low complexity
msi
4.6
2022-02-04 CVE-2021-44900 Unspecified vulnerability in MSI APP Player 4.280.1.6309
Micro-Star International (MSI) App Player <= 4.280.1.6309 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the NTIOLib_X64.sys and BstkDrv_msi2.sys drivers components.
local
low complexity
msi
4.6
2022-02-04 CVE-2021-44901 Unspecified vulnerability in MSI Dragon Center
Micro-Star International (MSI) Dragon Center <= 2.0.116.0 is vulnerable to multiple Privilege Escalation (LPE/EoP) vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib_X64.sys, WinRing0.sys, WinRing0x64.sys drivers components.
local
low complexity
msi
4.6
2021-06-21 CVE-2021-29337 Unspecified vulnerability in MSI Dragon Center 2.0.104.0
MODAPI.sys in MSI Dragon Center 2.0.104.0 allows low-privileged users to access kernel memory and potentially escalate privileges via a crafted IOCTL 0x9c406104 call.
local
low complexity
msi
7.2
2021-03-05 CVE-2021-27965 Classic Buffer Overflow vulnerability in MSI Dragon Center
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request.
network
low complexity
msi CWE-120
7.5
2020-10-02 CVE-2020-17382 Out-of-bounds Write vulnerability in MSI Ambientlink Mslo64 Firmware 1.0.0.8
The MSI AmbientLink MsIo64 driver 1.0.0.8 has a Buffer Overflow (0x80102040, 0x80102044, 0x80102050,and 0x80102054).
local
low complexity
msi CWE-787
7.2
2020-05-18 CVE-2020-13149 Incorrect Default Permissions vulnerability in MSI Dragon Center
Weak permissions on the "%PROGRAMDATA%\MSI\Dragon Center" folder in Dragon Center before 2.6.2003.2401, shipped with Micro-Star MSI Gaming laptops, allows local authenticated users to overwrite system files and gain escalated privileges.
local
low complexity
msi CWE-276
4.6