CVE-2026-12784

HIGH SEVERITY

CVSS Score & Metrics

Base Score

7.8 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

A weakness has been identified in IM-Magic Partition Resizer up to 7.9.0. This affects an unknown function in the library MDA_NTDRV.sys of the component Kernel Driver. This manipulation causes improper access controls. The attack requires local access. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability Details

Published Date

June 21, 2026

Last Modified

June 21, 2026

CWE ID

CWE-266

Source

NVD

Vendor

IM-Magic

Product

Partition Resizer

External References

https://vuldb.com/cve/CVE-2026-12784
https://vuldb.com/submit/835613
https://vuldb.com/vuln/372524
https://vuldb.com/vuln/372524/cti
https://winslow1984.com/books/cve-collection/page/im-magic-partition-resizer-790-kernel-driver-mda-ntdrvsys-local-privilege-escalation

CVE-2026-12784

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment