CVE-2026-12168
EUVD-2026-4137802.07.2026, 15:16
An improper validation vulnerability for driver `GFAC_Sys_x64.sys` in Little Orbit GFAC allows a local attacker to escalate privileges to SYSTEM and execute arbitrary code in kernel mode via crafted messages sent through a Minifilter communication port.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.