CVE-2026-12201

IObit Malware Fighter DLL permission

CVSS 4.8 MEDIUMEPSS 0.1%CWE-266 CWE-275

A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The attack requires local access. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Produtos afetados

IObit · Malware Fighter

PoCs públicas encontradas — 1

cve_referencenathan2.com/posts/iobit/não verificado

⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/nasawyer7/IObitDriverav https://nathan2.com/posts/iobit/https://vuldb.com/cve/CVE-2026-12201 https://vuldb.com/submit/829913 https://vuldb.com/vuln/370844 https://vuldb.com/vuln/370844/cti