PT-2024-27563 · Msi · Msi Afterburner
Andres Roldan
·
Published
2024-05-18
·
Updated
2024-10-15
·
CVE-2024-3745
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MSI Afterburner version 4.6.6.16381 Beta 3
Description
The issue is related to an ACL Bypass vulnerability in the RTCore64.sys driver, which can lead to incorrect authorization and potentially compromise the local system.
Recommendations
Update to the latest patch version immediately to resolve the issue. As a temporary workaround, consider disabling the RTCore64.sys driver until a patch is available. Monitor for exploit development to minimize the risk of exploitation.
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Msi Afterburner