Local Privilege Escalation Vulnerability in MSI Center by MSI
CVE-2025-27812

8.1HIGH

Key Information:

Vendor: Msi
Status: Center
Vendor: CVE Published:; 10 April 2025

What is CVE-2025-27812?

MSI Center versions earlier than 2.0.52.0 are susceptible to a Time of Check to Time of Use (TOCTOU) vulnerability. This flaw can allow an attacker to escalate privileges locally, potentially enabling unauthorized access and modifications to system resources. It is crucial for users to update to the latest version to mitigate these risks and ensure the security of their systems.

Affected Version(s)

Center 0 < 2.0.52.0

References

https://csr.msi.com/global/product-security-advisories

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 10, 2025
Vulnerability Reserved
Mar 7, 2025

Msi

What is CVE-2025-27812?

Affected Version(s)

References

CVSS V3.1

Timeline