CVE-2021-44903

Name of the Vulnerable Software and Affected Versions Micro-Star International (MSI) Center Pro version 2.0.16.0 and earlier

Description The issue concerns multiple Privilege Escalation vulnerabilities in the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib X64.sys, WinRing0.sys, and WinRing0x64.sys driver components. These vulnerabilities can be triggered by sending specific IOCTL requests.

Recommendations For Micro-Star International (MSI) Center Pro version 2.0.16.0 and earlier, consider updating to a version later than 2.0.16.0 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable driver components until a patch is available. Avoid sending specific IOCTL requests to the atidgllk.sys, atillk64.sys, MODAPI.sys, NTIOLib.sys, NTIOLib X64.sys, WinRing0.sys, and WinRing0x64.sys drivers to minimize the risk of exploitation.