7.8 CVE-2026-12168

Enriched by CISA
 

An improper validation vulnerability for driver `GFAC_Sys_x64.sys` in Little Orbit GFAC allows a local attacker to escalate privileges to SYSTEM and execute arbitrary code in kernel mode via crafted messages sent through a Minifilter communication port.
https://nvd.nist.gov/vuln/detail/CVE-2026-12168

Categories

No category defined

References


 

AFFECTED (from MITRE)


Vendor Product Versions
Little Orbit GameFirst Anti-Cheat
  • ≤ 2025-07-07 [affected]
© 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

CPE

cpe start end


REMEDIATION




EXPLOITS


Exploit-db.com

id description date
No known exploits

POC Github

Url
No known exploits

Other Nist (github, ...)

Url
No known exploits


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry