CVE-2026-12784

Sažetak

A weakness has been identified in IM-Magic Partition Resizer up to 7.9.0. This affects an unknown function in the library MDA_NTDRV.sys of the component Kernel Driver. This manipulation causes improper access controls. The attack requires local access. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Reference

https://vuldb.com/cve/CVE-2026-12784
https://vuldb.com/submit/835613
https://vuldb.com/vuln/372524
https://vuldb.com/vuln/372524/cti
https://winslow1984.com/books/cve-collection/page/im-magic-partition-resizer-790-kernel-driver-mda-ntdrvsys-local-privilege-escalation

CVSS

Base:	6.8
Impact:	10.0
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

21-06-2026 - 08:16

Objavljeno

21-06-2026 - 08:16