CVE-2026-57851 – MSI KernCoreLib64.sys Privilege Escalation via IOCTL Handlers

​CVE ID :CVE-2026-57851

Published : July 7, 2026, 5:16 p.m. | 1 hour, 48 minutes ago

Description :MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver that allows any locally logged-on user to perform arbitrary physical memory read/write and unrestricted I/O port operations by accessing exposed IOCTL handlers without administrator privileges. Attackers can exploit the accessible device object through IOCTL handlers to manipulate kernel objects, tamper with kernel-mode callbacks, bypass Protected Process Light protections, and disable security software.

Severity: 8.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… To Read More Visit Read More