CVE-2026-15476

high

Description

A security vulnerability has been detected in QILING Disk Master 6.0.0.0. The impacted element is an unknown function in the library diskbckp.sys of the component Kernel Driver. Such manipulation leads to improper access controls. The attack can only be performed from a local environment. The exploit has been disclosed publicly and may be used. It is suggested to upgrade the affected component.

References

https://www.idiskhome.com/download/beta/multi_DiskMaster_Pro_Trial.exe

https://winslow1984.com/books/cve-collection/page/qiling-disk-master-kernel-driver-diskbckpsys-6-0-0-0-local-privilege-escalation

https://vuldb.com/vuln/377781/cti

https://vuldb.com/vuln/377781

https://vuldb.com/submit/835610

https://vuldb.com/cve/CVE-2026-15476

Details

Source: Mitre, NVD

Published: 2026-07-12

Updated: 2026-07-12

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High