CVE 8.5 HIGH

Qihoo 360 Total Security Nucleus Engine Monitoring Logic RpcStringBindingComposeW protection mechanism_CVE-2026-12214

June 15, 2026 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A security flaw has been discovered in Qihoo 360 Total Security 6.0. This vulnerability affects the function RpcStringBindingComposeW of the component Nucleus Engine Monitoring Logic. Performing a manipulation of the argument NetworkAddr results in protection mechanism failure. The attack requires a local approach. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Protection mechanism failure in Qihoo 360 Total Security's Nucleus Engine Monitoring Logic due to RpcStringBindingComposeW vulnerability

Basic Information

ID CVE-2026-12214

Source VulDB

Published Jun 15, 2026 at 03:30

Affected Product

Vendor Qihoo

Product 360 Total Security

Version 6.0

Affected Versions Qihoo 360 Total Security 6.0

CWE Classification

CWE-693

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor Qihoo

Product 360 Total Security

Version 6.0

References

{
    "lastseen": "",
    "description": "A security flaw has been discovered in Qihoo 360 Total Security 6.0. This vulnerability affects the function RpcStringBindingComposeW of the component Nucleus Engine Monitoring Logic. Performing a manipulation of the argument NetworkAddr results in protection mechanism failure. The attack requires a local approach. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-06-15T03:30:08.471Z",
    "modified": "2026-06-15T03:30:08.471Z",
    "type": "cve",
    "title": "Qihoo 360 Total Security Nucleus Engine Monitoring Logic RpcStringBindingComposeW protection mechanism",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/370858\nhttps://vuldb.com/vuln/370858/cti\nhttps://vuldb.com/cve/CVE-2026-12214\nhttps://vuldb.com/submit/833135\nhttps://github.com/Gach0ng/vuldb_submit/issues/4",
    "id": "CVE-2026-12214",
    "bulletinFamily": "",
    "cwe": [
        "CWE-693"
    ],
    "cvelist": null,
    "sourceData": "Qihoo 360 Total Security 6.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "360 Total Security",
    "version": "6.0",
    "vendor": "Qihoo",
    "ai_description": "Protection mechanism failure in Qihoo 360 Total Security's Nucleus Engine Monitoring Logic due to RpcStringBindingComposeW vulnerability",
    "ai_severity": "High",
    "ai_vendor": "Qihoo",
    "ai_product": "360 Total Security",
    "ai_version": "6.0",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply