CVE-2024-1460

Published: Mar 7, 2024Modified: Oct 14, 2025

4.4

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Exploitability: 0.8 / Impact: 3.6

Source: NVD

Description

MSI Afterburner v4.6.5.16370 is vulnerable to a Kernel Memory Leak vulnerability by triggering the 0x80002040 IOCTL code of the RTCore64.sys driver. The handle to the driver can only be obtained from a high integrity process.

Affected (1)

Products: Msi: Afterburner

Msi

1 product

Afterburner

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Msi Afterburner	Version 4.6.5.16370

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

https://fluidattacks.com/advisories/mingus/

Source: help@fluidattacks.com

ExploitThird Party Advisory

https://www.msi.com/Landing/afterburner/graphics-cards

Source: help@fluidattacks.com

Product

https://fluidattacks.com/advisories/mingus/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.msi.com/Landing/afterburner/graphics-cards

Source: af854a3a-2127-422b-91ae-364da2661108

Product

Timeline

No history available yet.