CVE-2024-12227

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Dec 5, 2024
CWE ID 404
CWE ID 476

Summary

CVE-2024-12227 is a vulnerability identified in MSI Dragon Center versions up to 2.0.146.0. This issue affects the IOCTL Handler's NTIOLib_X64.sys library, specifically the MmUnMapIoSpace function. Attackers can exploit this flaw to cause a null pointer dereference, potentially launching an attack on the local host. Upgrading to version 2.0.148.0 of MSI Dragon Center addresses this vulnerability, and it's strongly advised to upgrade the affected component to ensure security.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share