CVE-2024-3745
CVSS V2 None
CVSS V3 None
Description
MSI Afterburner v4.6.6.16381 Beta 3 is vulnerable to an ACL Bypass vulnerability in the RTCore64.sys driver, which leads to triggering vulnerabilities like CVE-2024-1443 and CVE-2024-1460 from a low privileged user.
Overview
- CVE ID
- CVE-2024-3745
- Assigner
- Fluid Attacks
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-05-18T12:34:46.896Z
- Last Modified Date
- 2024-06-04T17:30:58.049Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://fluidattacks.com/advisories/gershwin/ | third-party-advisory |
| https://forums.guru3d.com/threads/msi-ab-rtss-development-news-thread.412822/page-227#post-6231456 | patch |
| https://forums.guru3d.com/threads/msi-ab-rtss-development-news-thread.412822/page-227#post-6231768 | release-notes |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-3745 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3745 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-23 23:22:14 | Added to TrackCVE |