Description
A vulnerability has been found in AOMEI Partition Assistant up to 10.10.1. This vulnerability affects unknown code in the library ampa10.sys of the component Kernel Driver. Such manipulation leads to improper access controls. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-06-21
Score: 8.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

AOMEI Partition Assistant contains a flaw in its ampa10.sys kernel driver that allows a local user to bypass normal access controls and elevate to kernel or system level privileges. The vulnerability is rooted in improper handling of privileged operations within the driver, classified as CWE‑266 and CWE‑284. As a result, a user who can execute locally on the affected machine can gain elevated rights without needing further authentication.

Affected Systems

Installations of AOMEI Partition Assistant up to and including version 10.10.1 on Windows systems are vulnerable. The flaw exists in the ampa10.sys component of the kernel driver that the software loads. No other products or later versions have been reported to be affected at this time.

Risk and Exploitability

With a CVSS score of 8.5, this flaw is high severity. The attack is local and does not require network access, and the EPSS score is not available. The vulnerability has been publicly disclosed with evidence of an available exploit, yet it is not listed in the CISA KEV catalog. Consequently, machines that allow local user activity remain at significant risk of privilege escalation until a vendor fix or mitigation is implemented.

Generated by OpenCVE AI on June 21, 2026 at 09:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Disable or remove the ampa10.sys kernel driver where possible to eliminate the vulnerable code.
  • Enforce least privilege for local users and block execution of new kernel drivers via device manager or group policy settings.
  • Monitor vendor advisories for a patch, and apply the update immediately when released.
  • Implement system monitoring to detect unauthorized kernel driver installations and respond promptly.

Generated by OpenCVE AI on June 21, 2026 at 09:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 22 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sun, 21 Jun 2026 07:45:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in AOMEI Partition Assistant up to 10.10.1. This vulnerability affects unknown code in the library ampa10.sys of the component Kernel Driver. Such manipulation leads to improper access controls. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title AOMEI Partition Assistant Kernel Driver ampa10.sys access control
First Time appeared Aomei
Aomei partition Assistant
Weaknesses CWE-266
CWE-284
CPEs cpe:2.3:a:aomei:partition_assistant:*:*:*:*:*:*:*:*
Vendors & Products Aomei
Aomei partition Assistant
References
Metrics cvssV2_0

{'score': 6.8, 'vector': 'AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}


Subscriptions

Aomei Partition Assistant
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-22T13:33:40.193Z

Reserved: 2026-06-20T09:36:06.162Z

Link: CVE-2026-12778

cve-icon Vulnrichment

Updated: 2026-06-22T13:33:36.742Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-21T11:45:04Z

Weaknesses
  • CWE-266

    Incorrect Privilege Assignment

  • CWE-284

    Improper Access Control