CVE-2024-1460
published 2024-03-07CVE-2024-1460: MSI Afterburner v4.6.5.16370 is vulnerable to a Kernel Memory Leak vulnerability by triggering the 0x80002040 IOCTL code of the RTCore64.sys driver. The handle…
PriorityP417medium4.4CVSS 3.1
AVLACLPRHUINSUCHINAN
EPSS
0.24%
14.8th percentile
MSI Afterburner v4.6.5.16370 is vulnerable to a Kernel Memory Leak vulnerability by triggering the 0x80002040 IOCTL code of the RTCore64.sys driver. The handle to the driver can only be obtained from a high integrity process.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msi | afterburner | — | — |
| msi | msi_afterburner | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-73hm-3cg9-j7hj: MSI Afterburner v4
ghsa_unreviewed·2024-05-18·CVSS 4.4
CVE-2024-3745 [MEDIUM] CWE-863 GHSA-73hm-3cg9-j7hj: MSI Afterburner v4
MSI Afterburner v4.6.6.16381 Beta 3 is vulnerable to an ACL Bypass vulnerability in the RTCore64.sys driver, which leads to triggering vulnerabilities like CVE-2024-1443 and CVE-2024-1460 from a low privileged user.
GHSA
GHSA-5g62-9q93-xrv9: MSI Afterburner v4
ghsa_unreviewed·2024-03-07
CVE-2024-1460 [MEDIUM] CWE-200 GHSA-5g62-9q93-xrv9: MSI Afterburner v4
MSI Afterburner v4.6.5.16370 is vulnerable to a Kernel Memory Leak vulnerability by triggering the 0x80002040 IOCTL code of the RTCore64.sys driver. The handle to the driver can only be obtained from a high integrity process.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-03-07
Published