Exploit for #VU67995 Exposed dangerous method or function in MSI Afterburner

Exploit for #VU67995 Exposed dangerous method or function in MSI Afterburner

Published: 2022-10-07 | Updated: 2023-12-27

Vulnerability identifier: #VU67995

Vulnerability risk: Low

CVSSv3.1: 7.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2019-16098

CWE-ID: CWE-749

Exploitation vector: Local

Exploits in database: 2

December 27, 2023
- CVE-2019-16098 (Micro-Star MSI Afterburner 4.6.2.15658 exploit Windows 10 x64 Version >= 1709) [Github]
October 7, 2022
- CVE-2019-16098 (Local privilege escalation PoC exploit for CVE-2019-16098) [Github]

Impact: Code execution

Vulnerable software:
MSI Afterburner
Client/Desktop applications / Software for system administration

Vendor: Micro-Star