CVE-2022-31877

CVSS V2 None CVSS V3 None
Description
An issue in the component MSI.TerminalServer.exe of MSI Center v1.0.41.0 allows attackers to escalate privileges via a crafted TCP packet.
Overview
  • CVE ID
  • CVE-2022-31877
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-11-28T15:15:10.333
  • Last Modified Date
  • 2022-11-30T03:54:14.467
Weakness Enumerations
CWE URL
CWE-345 http://cwe.mitre.org/data/definitions/345.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:msi:center:1.0.41.0:*:*:*:*:*:*:* 1 OR
References
Reference URL Reference Tags
http://msi.com Vendor Advisory
https://patsch.dev/2022/07/08/cve-2022-31877-privilege-escalation-in-msi-centers-msi-terminalserver-exe/ Exploit Third Party Advisory
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2022-31877
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31877
History
Created Old Value New Value Data Type Notes
2022-12-07 18:05:19 Added to TrackCVE