CVE-2026-12193

Published: Giu 15, 2026 Last Modified: Giu 15, 2026
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,1
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Confidentiality: N/A
Integrity: N/A
Availability: N/A
HIGH 7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
MEDIUM 6,8
Source: [email protected]
Access Vector: local
Access Complexity: low
Authentication: single
Confidentiality: complete
Integrity: complete
Availability: complete

Description

AI Translation Available

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. Upgrading to version 2.7.0 is sufficient to fix this issue. It is recommended to upgrade the affected component.

119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Stable
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability
Potential Impacts:
Execute Unauthorized Code Or Commands Modify Memory Read Memory Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory)
Applicable Platforms
Languages: Memory-Unsafe, C, C++, Assembly
Likelihood of Exploit: High
View CWE Details
122

Heap-based Buffer Overflow

Draft
Abstraction: Variant Structure: Simple
Common Consequences
Security Scopes Affected:
Availability Integrity Confidentiality Access Control Other
Potential Impacts:
Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Execute Unauthorized Code Or Commands Bypass Protection Mechanism Modify Memory Other
Applicable Platforms
Languages: Memory-Unsafe, C, C++
Likelihood of Exploit: High
View CWE Details
https://github.com/Kalagious/RevoDetectorExploit/tree/master
https://github.com/Kalagious/RevoDetectorExploit/tree/master
https://jordanhiggins.blog/revouninstaller-pool-overflow-ex…
https://jordanhiggins.blog/revouninstaller-pool-overflow-exploit/
https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg…
https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg2059_vandals_uidaho_…
https://vuldb.com/cve/CVE-2026-12193
https://vuldb.com/cve/CVE-2026-12193
https://vuldb.com/submit/829132
https://vuldb.com/submit/829132
https://vuldb.com/submit/829133
https://vuldb.com/submit/829133
https://vuldb.com/vuln/370839
https://vuldb.com/vuln/370839
https://vuldb.com/vuln/370839/cti
https://vuldb.com/vuln/370839/cti
https://www.revouninstaller.com/start-freeware-download/
https://www.revouninstaller.com/start-freeware-download/
https://youtu.be/JR0KPjWRTns?si=Ff2bUDvv3butJyfP
https://youtu.be/JR0KPjWRTns?si=Ff2bUDvv3butJyfP