Back to overview

CVE-2026-15476

MEDIUM
5.3
CVSS 3.1
Description
A security vulnerability has been detected in QILING Disk Master 6.0.0.0. The impacted element is an unknown function in the library diskbckp.sys of the component Kernel Driver. Such manipulation leads to improper access controls. The attack can only be performed from a local environment. The exploit has been disclosed publicly and may be used. It is suggested to upgrade the affected component.

Metadata

CVE ID
CVE-2026-15476
State
PUBLISHED
Assigner
VulDB
Reserved
2026-07-11 09:44 UTC
Published
2026-07-12 03:30 UTC
Last updated
2026-07-12 03:30 UTC
Primary CWE
CWE-284
Improper Access Controls
Vendor / Product
QILING / Disk Master
Sources
cve.org  ·  NVD

Severity & Metrics

5.3 MEDIUM CVSS 3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
Affected products (1)
VendorProductPlatformVersions
QILING Disk Master 6.0.0.0
Weakness (CWE)
CWESourceDescription
CWE-266 cna Incorrect Privilege Assignment
CWE-284 cna Improper Access Controls
CVSS scores (4)
ScoreSeverityVersionSourceVector
5.3 MEDIUM 3.1 cna CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
5.3 MEDIUM 3.0 cna CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
4.8 MEDIUM 4.0 cna CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
4.3 N/D 2.0 cna AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C
References (6)
Back to overview