MSI Afterburner Vulnerable to Denial of Service Attack
CVE-2024-1443

4.4MEDIUM

Key Information:

Vendor: Msi
Status: Msi Afterburner
Vendor: CVE Published:; 7 March 2024

What is CVE-2024-1443?

MSI Afterburner v4.6.5.16370 is vulnerable to a Denial of Service vulnerability by triggering the 0x80002000 IOCTL code of the RTCore64.sys driver. The handle to the driver can only be obtained from a high integrity process.

Affected Version(s)

MSI Afterburner Windows 4.6.5.16370

References

https://fluidattacks.com/advisories/coltrane/

third-party-advisory

https://www.msi.com/Landing/afterburner/graphics-cards

product

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 7, 2024
Vulnerability Reserved
Feb 12, 2024

Msi

What is CVE-2024-1443?

Affected Version(s)

References

CVSS V3.1

Timeline