CVE-2026-12193 - Vulnerability Details

- VS Revo RevoUninstaller IOCTL RevoDetector.sys IOCtl_Handler heap-based overflow

Description

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. Upgrading to version 2.7.0 is sufficient to fix this issue. It is recommended to upgrade the affected component.

Published: 2026-06-14

Score: 8.5 High

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability resides in the IOCtl_Handler function of RevoDetector.sys within VS Revo RevoUninstaller 2.5.x/2.6.x, causing a heap‑based buffer overflow when an attacker supplies malformed IOCTL input. The overflow can corrupt memory on the local machine and allows arbitrary code execution or privilege escalation. This flaw is a classic buffer overflow flaw identified by CWE‑119 and CWE‑122 and requires local execution of a crafted IOCTL call.

Affected Systems

Affected products are VS Revo RevoUninstaller version 2.5.x and 2.6.x. No other versions were indicated in the CNA data.

Risk and Exploitability

The flaw has a CVSS score of 8.5, indicating high severity. No EPSS score is available, but public exploit code is already released and the vulnerability is only exploitable by a local attacker. The exploit is not listed in the CISA KEV catalog, although the public disclosure and available proof‑of‑concept underscore the risk. Attackers need local access to the target system and the ability to send an IOCTL to RevoDetector.sys; from there, the malicious payload is able to execute arbitrary code with the privileges of the current user.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

VS Revo

RevoUninstaller

affected

Version	Status	Constraints
`2.5.*`	affected	—
`2.6.*`	affected	—
`2.7.0`	unaffected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade RevoUninstaller to version 2.7.0 or later.
If an upgrade is not immediately possible, remove or disable RevoDetector.sys or block its IOCTL interface through system policy.
Monitor system activity for abnormal memory corruption or suspicious IOCTL requests and review logs for signs of exploitation.

Generated by OpenCVE AI on June 15, 2026 at 00:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://github.com/Kalagious/RevoDetectorExploit/tree/master
https://jordanhiggins.blog/revouninstaller-pool-overflow-exploit/
https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg2059_vandals_uidaho_edu/IQAMHgdfpRAkSqDsoFVswIYNAXjPVFz-admcJyl5ITzYhu0?e=4Ywwza
https://vuldb.com/cve/CVE-2026-12193
https://vuldb.com/submit/829132
https://vuldb.com/submit/829133
https://vuldb.com/vuln/370839
https://vuldb.com/vuln/370839/cti
https://www.revouninstaller.com/start-freeware-download/
https://youtu.be/JR0KPjWRTns?si=Ff2bUDvv3butJyfP

History

Sun, 14 Jun 2026 23:45:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. Upgrading to version 2.7.0 is sufficient to fix this issue. It is recommended to upgrade the affected component.
Title		VS Revo RevoUninstaller IOCTL RevoDetector.sys IOCtl_Handler heap-based overflow
First Time appeared		Vs Revo Vs Revo revouninstaller
Weaknesses		CWE-119 CWE-122
CPEs		cpe:2.3:a:vs_revo:revouninstaller::::::::
Vendors & Products		Vs Revo Vs Revo revouninstaller
References		https://github.com/Kalagious/RevoDetectorExploit/tree/master https://jordanhiggins.blog/revouninstaller-pool-overflow-exploit/ https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg2059_vandals_uidaho_edu/IQAMHgdfpRAkSqDsoFVswIYNAXjPVFz-admcJyl5ITzYhu0?e=4Ywwza https://vuldb.com/cve/CVE-2026-12193 https://vuldb.com/submit/829132 https://vuldb.com/submit/829133 https://vuldb.com/vuln/370839 https://vuldb.com/vuln/370839/cti https://www.revouninstaller.com/start-freeware-download/ https://youtu.be/JR0KPjWRTns?si=Ff2bUDvv3butJyfP
Metrics		cvssV2_0 `{'score': 6.8, 'vector': 'AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C'}` cvssV3_0 `{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C'}` cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C'}` cvssV4_0 `{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Vs Revo Revouninstaller

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-06-14T23:30:14.771Z

Updated: 2026-06-14T23:30:14.771Z

Reserved: 2026-06-14T06:54:09.764Z

Link: CVE-2026-12193

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-06-15T00:16:43.350

Modified: 2026-06-15T00:16:43.350

Link: CVE-2026-12193

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-15T00:30:07Z

Weaknesses

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-122
Heap-based Buffer Overflow

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object