What is CVE-2026-12786?

CVE-2026-12786 is a high-severity vulnerability in Ezbsystems Ultraiso Premium Edition, classified under Incorrect Privilege Assignment. CVSS score: 7.8/10. Published 2026-06-21.

How severe is CVE-2026-12786?

High severity. CVSS v3 base score is 7.8 out of 10.

Privilege escalation in Ezbsystems Ultraiso Premium Edition

CVE-2026-12786

A vulnerability has been found in Ezbsystems UltraISO Premium Edition up to 9.76. Affected by this issue is some unknown functionality in the library bootpt64.sys of the component Kernel Driver. The manipulation leads to improper access co…

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Ezbsystems Ultraiso Premium Edition — versions 9.0, 9.1, 9.2

Weakness classification (CWE)

References

cna@vuldb.com (vdb-entry)
cna@vuldb.com (signature, permissions-required)
cna@vuldb.com (third-party-advisory)
cna@vuldb.com (third-party-advisory)
cna@vuldb.com (exploit)

Frequently asked questions

What is CVE-2026-12786?: CVE-2026-12786 is a high-severity vulnerability in Ezbsystems Ultraiso Premium Edition, classified under Incorrect Privilege Assignment. CVSS score: 7.8/10. Published 2026-06-21.
How severe is CVE-2026-12786?: High severity. CVSS v3 base score is 7.8 out of 10.