Msi: community verdicts
5 notable / known-exploited Msi CVEs the community has triaged.
- CVE-2022-31877HIGH 8.8Real · low riskEPSS 0%
An issue in the component MSI.TerminalServer.exe of MSI Center v1.0.41.0 allows attackers to escalate privileges via a crafted TCP packet.
- CVE-2022-34108HIGH 7.1Real · low riskEPSS 0%
An issue in the Feature Navigator of Micro-Star International MSI Feature Nagivator v1.0.1808.0901 allows attackers to cause a Denial of Service (DoS) via a crafted image or video file.
- CVE-2022-34109HIGH 7.1Real · low riskEPSS 0%
An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to write arbitrary files to the directory \PromoPhoto\, regardless of file type or size.
- CVE-2022-34110MED 5.5EPSS 0%
An issue in Micro-Star International MSI Feature Navigator v1.0.1808.0901 allows attackers to download arbitrary files regardless of file type or size.
- CVE-2021-32415HIGH 7.8Real · low riskEPSS 0%
EXEMSI MSI Wrapper Versions prior to 10.0.50 and at least since version 6.0.91 will introduce a local privilege escalation vulnerability in installers it creates.