CVE-2026-12193

HIGH SEVERITY

CVSS Score & Metrics

Base Score

7.8 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. Upgrading to version 2.7.0 is sufficient to fix this issue. It is recommended to upgrade the affected component.

Vulnerability Details

Published Date

June 15, 2026

Last Modified

June 15, 2026

CWE ID

CWE-119

Source

NVD

Vendor

VS Revo

Product

RevoUninstaller

External References

https://github.com/Kalagious/RevoDetectorExploit/tree/master
https://jordanhiggins.blog/revouninstaller-pool-overflow-exploit/
https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg2059_vandals_uidaho_edu/IQAMHgdfpRAkSqDsoFVswIYNAXjPVFz-admcJyl5ITzYhu0?e=4Ywwza
https://vuldb.com/cve/CVE-2026-12193
https://vuldb.com/submit/829132
https://vuldb.com/submit/829133
https://vuldb.com/vuln/370839
https://vuldb.com/vuln/370839/cti
https://www.revouninstaller.com/start-freeware-download/
https://youtu.be/JR0KPjWRTns?si=Ff2bUDvv3butJyfP

CVE-2026-12193

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment