CVE 8.5 HIGH

DVDFab Virtual Drive Signed Kernel Driver dvdfabio.sys privileges management_CVE-2026-12217

June 15, 2026 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A security vulnerability has been detected in DVDFab Virtual Drive 2.0.0.5. Impacted is an unknown function in the library dvdfabio.sys of the component Signed Kernel Driver. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Improper privilege management vulnerability in DVDFab Virtual Drive Signed Kernel Driver dvdfabio.sys

Basic Information

ID CVE-2026-12217

Source VulDB

Published Jun 15, 2026 at 04:00

Affected Product

Vendor DVDFab

Product Virtual Drive

Version 2.0.0.5

Affected Versions DVDFab Virtual Drive 2.0.0.5

CWE Classification

CWE-269 CWE-266

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor DVDFab

Product Virtual Drive

Version 2.0.0.5

References

{
    "lastseen": "",
    "description": "A security vulnerability has been detected in DVDFab Virtual Drive 2.0.0.5. Impacted is an unknown function in the library dvdfabio.sys of the component Signed Kernel Driver. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-06-15T04:00:06.971Z",
    "modified": "2026-06-15T04:00:06.971Z",
    "type": "cve",
    "title": "DVDFab Virtual Drive Signed Kernel Driver dvdfabio.sys privileges management",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/370860\nhttps://vuldb.com/vuln/370860/cti\nhttps://vuldb.com/cve/CVE-2026-12217\nhttps://vuldb.com/submit/833857\nhttps://winslow1984.com/books/cve-collection/page/dvdfab-virtual-drive-kernel-driver-dvdfabiosys-local-privilege-escalation",
    "id": "CVE-2026-12217",
    "bulletinFamily": "",
    "cwe": [
        "CWE-269",
        "CWE-266"
    ],
    "cvelist": null,
    "sourceData": "DVDFab Virtual Drive 2.0.0.5",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Virtual Drive",
    "version": "2.0.0.5",
    "vendor": "DVDFab",
    "ai_description": "Improper privilege management vulnerability in DVDFab Virtual Drive Signed Kernel Driver dvdfabio.sys",
    "ai_severity": "High",
    "ai_vendor": "DVDFab",
    "ai_product": "Virtual Drive",
    "ai_version": "2.0.0.5",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply