Lucene search
K

10 matches found

Nuclei
Nuclei
added yesterday33 views

DVDFab 12 Player/PlayerFab - Local File Inclusion

DVDFab 12 Player/PlayerFab is susceptible to local file inclusion which allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access. id: CVE-2022-25216 info: name: DVDFab 12 Player/PlayerFa...

7.8CVSS7.1AI score0.13835EPSS
Exploits1References4
NVD
NVD
added 2026/06/15 4:16 a.m.10 views

CVE-2026-12217

A security vulnerability has been detected in DVDFab Virtual Drive 2.0.0.5. Impacted is an unknown function in the library dvdfabio.sys of the component Signed Kernel Driver. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been...

8.5CVSS0.00111EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/15 4:0 a.m.34 views

CVE-2026-12217 DVDFab Virtual Drive Signed Kernel Driver dvdfabio.sys privileges management

A security vulnerability has been detected in DVDFab Virtual Drive 2.0.0.5. Impacted is an unknown function in the library dvdfabio.sys of the component Signed Kernel Driver. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been...

8.5CVSS0.00111EPSS
Exploits0References5
CVE
CVE
added 2026/06/15 4:0 a.m.30 views

CVE-2026-12217

DVDFab Virtual Drive 2.0.0.5 is affected by a local privilege escalation in the Signed Kernel Driver (dvdfabio.sys). The vulnerability concerns an unknown function within the driver library that leads to improper privilege management. Attacks require local access; the exploit has been publicly di...

8.5CVSS6.8AI score0.00111EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/15 4:0 a.m.11 views

EUVD-2026-36690

A security vulnerability has been detected in DVDFab Virtual Drive 2.0.0.5. Impacted is an unknown function in the library dvdfabio.sys of the component Signed Kernel Driver. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been...

8.5CVSS6.8AI score0.00111EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.13 views

PT-2026-49178

Name of the Vulnerable Software and Affected Versions DVDFab Virtual Drive version 2.0.0.5 Description Improper privilege management exists within the Signed Kernel Driver component, specifically affecting a function in the dvdfabio.sys library. This issue allows a local attacker to manipulate th...

8.5CVSS7.1AI score0.00111EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 12:4 a.m.15 views

CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

7.8CVSS7AI score0.13835EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/03/11 6:15 p.m.7 views

CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

7.8CVSS7.2AI score0.13835EPSS
Exploits1References3
OSV
OSV
added 2022/03/11 6:15 p.m.4 views

CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player recently renamed PlayerFab has read-access, by means of an HTTP GET request to http://:32080/download/...

7.5CVSS5.8AI score0.13835EPSS
Exploits1References1
CVE
CVE
added 2022/03/11 5:54 p.m.94 views

CVE-2022-25216

DVDFab 12 Player/PlayerFab is affected by a local file inclusion (absolute path traversal) via HTTP GET to /download/. The issue allows remote attackers to download any file on the Windows filesystem readable by the running user. Root cause: traversal of local paths in the download endpoint. Affe...

7.8CVSS7.5AI score0.13835EPSS
Exploits1References1Affected Software2
Rows per page
Query Builder