CVE-2026-12786

Summary

A vulnerability has been found in Ezbsystems UltraISO Premium Edition up to 9.76. Affected by this issue is some unknown functionality in the library bootpt64.sys of the component Kernel Driver. The manipulation leads to improper access controls. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Affected Software

VendorProductVersion RangeStatus
EzbsystemsUltraISO Premium Edition9.0affected
EzbsystemsUltraISO Premium Edition9.1affected
EzbsystemsUltraISO Premium Edition9.2affected
EzbsystemsUltraISO Premium Edition9.3affected
EzbsystemsUltraISO Premium Edition9.4affected
EzbsystemsUltraISO Premium Edition9.5affected
EzbsystemsUltraISO Premium Edition9.6affected
EzbsystemsUltraISO Premium Edition9.7affected
EzbsystemsUltraISO Premium Edition9.8affected
EzbsystemsUltraISO Premium Edition9.9affected
EzbsystemsUltraISO Premium Edition9.10affected
EzbsystemsUltraISO Premium Edition9.11affected
EzbsystemsUltraISO Premium Edition9.12affected
EzbsystemsUltraISO Premium Edition9.13affected
EzbsystemsUltraISO Premium Edition9.14affected
EzbsystemsUltraISO Premium Edition9.15affected
EzbsystemsUltraISO Premium Edition9.16affected
EzbsystemsUltraISO Premium Edition9.17affected
EzbsystemsUltraISO Premium Edition9.18affected
EzbsystemsUltraISO Premium Edition9.19affected
EzbsystemsUltraISO Premium Edition9.20affected
EzbsystemsUltraISO Premium Edition9.21affected
EzbsystemsUltraISO Premium Edition9.22affected
EzbsystemsUltraISO Premium Edition9.23affected
EzbsystemsUltraISO Premium Edition9.24affected
EzbsystemsUltraISO Premium Edition9.25affected
EzbsystemsUltraISO Premium Edition9.26affected
EzbsystemsUltraISO Premium Edition9.27affected
EzbsystemsUltraISO Premium Edition9.28affected
EzbsystemsUltraISO Premium Edition9.29affected
EzbsystemsUltraISO Premium Edition9.30affected
EzbsystemsUltraISO Premium Edition9.31affected
EzbsystemsUltraISO Premium Edition9.32affected
EzbsystemsUltraISO Premium Edition9.33affected
EzbsystemsUltraISO Premium Edition9.34affected
EzbsystemsUltraISO Premium Edition9.35affected
EzbsystemsUltraISO Premium Edition9.36affected
EzbsystemsUltraISO Premium Edition9.37affected
EzbsystemsUltraISO Premium Edition9.38affected
EzbsystemsUltraISO Premium Edition9.39affected
EzbsystemsUltraISO Premium Edition9.40affected
EzbsystemsUltraISO Premium Edition9.41affected
EzbsystemsUltraISO Premium Edition9.42affected
EzbsystemsUltraISO Premium Edition9.43affected
EzbsystemsUltraISO Premium Edition9.44affected
EzbsystemsUltraISO Premium Edition9.45affected
EzbsystemsUltraISO Premium Edition9.46affected
EzbsystemsUltraISO Premium Edition9.47affected
EzbsystemsUltraISO Premium Edition9.48affected
EzbsystemsUltraISO Premium Edition9.49affected
EzbsystemsUltraISO Premium Edition9.50affected
EzbsystemsUltraISO Premium Edition9.51affected
EzbsystemsUltraISO Premium Edition9.52affected
EzbsystemsUltraISO Premium Edition9.53affected
EzbsystemsUltraISO Premium Edition9.54affected
EzbsystemsUltraISO Premium Edition9.55affected
EzbsystemsUltraISO Premium Edition9.56affected
EzbsystemsUltraISO Premium Edition9.57affected
EzbsystemsUltraISO Premium Edition9.58affected
EzbsystemsUltraISO Premium Edition9.59affected
EzbsystemsUltraISO Premium Edition9.60affected
EzbsystemsUltraISO Premium Edition9.61affected
EzbsystemsUltraISO Premium Edition9.62affected
EzbsystemsUltraISO Premium Edition9.63affected
EzbsystemsUltraISO Premium Edition9.64affected
EzbsystemsUltraISO Premium Edition9.65affected
EzbsystemsUltraISO Premium Edition9.66affected
EzbsystemsUltraISO Premium Edition9.67affected
EzbsystemsUltraISO Premium Edition9.68affected
EzbsystemsUltraISO Premium Edition9.69affected
EzbsystemsUltraISO Premium Edition9.70affected
EzbsystemsUltraISO Premium Edition9.71affected
EzbsystemsUltraISO Premium Edition9.72affected
EzbsystemsUltraISO Premium Edition9.73affected
EzbsystemsUltraISO Premium Edition9.74affected
EzbsystemsUltraISO Premium Edition9.75affected
EzbsystemsUltraISO Premium Edition9.76affected

Weaknesses

  • CWE-284: Improper Access Controls
  • CWE-266: Incorrect Privilege Assignment

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References