CVE-2024-37726

MEDIUM

MSI Center <2.0.36.0 - Privilege Escalation

Title source: llm

Description

Insecure Permissions vulnerability in Micro-Star International Co., Ltd MSI Center v.2.0.36.0 allows a local attacker to escalate privileges via the Export System Info function in MSI.CentralServer.exe

Exploits (2)

nomisec WORKING POC 37 stars

by carsonchan12345 · poc

https://github.com/carsonchan12345/CVE-2024-37726-MSI-Center-Local-Privilege-Escalation

View Code ZIP pw:eip

nomisec WORKING POC

by NextGenPentesters · poc

https://github.com/NextGenPentesters/CVE-2024-37726-MSI-Center-Local-Privilege-Escalation

View Code ZIP pw:eip

References (1)

[Various Sources] https://github.com/carsonchan12345/CVE-2024-37726-MSI-Center-Local-Privilege-Escalation

Scores

CVSS v3 6.8

EPSS 0.0791

EPSS Percentile 92.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-269

Status published

Published Jul 03, 2024

Tracked Since Feb 18, 2026