All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2026-12168
HIGHpublished 2026-07-02 15:16 UTC · 2 days ago · modified 2026-07-02 18:16 UTC
7.8
CVSS / 10
// description
An improper validation vulnerability for driver `GFAC_Sys_x64.sys` in Little Orbit GFAC allows a local attacker to escalate privileges to SYSTEM and execute arbitrary code in kernel mode via crafted messages sent through a Minifilter communication port.