CVE-2026-12784
IM-Magic Partition Resizer Kernel Driver MDA_NTDRV.sys access control
CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
0th
A weakness has been identified in IM-Magic Partition Resizer up to 7.9.0. This affects an unknown function in the library MDA_NTDRV.sys of the component Kernel Driver. This manipulation causes improper access controls. The attack requires local access. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
| CWE | CWE-284 CWE-266 |
| Vendor | im-magic |
| Product | partition resizer |
| Published | Jun 21, 2026 |
Stay Ahead of the Next One
Get instant alerts for im-magic partition resizer
Be the first to know when new high vulnerabilities affecting im-magic partition resizer are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
IM-Magic / Partition Resizer
7.0 7.1 7.2 7.3 7.4 7.5 7.6 7.7 7.8 7.9.0
References
vuldb.com: https://vuldb.com/vuln/372524 vuldb.com: https://vuldb.com/vuln/372524/cti vuldb.com: https://vuldb.com/cve/CVE-2026-12784 vuldb.com: https://vuldb.com/submit/835613 winslow1984.com: https://winslow1984.com/books/cve-collection/page/im-magic-partition-resizer-790-kernel-driver-mda-ntdrvsys-local-privilege-escalation
Credits
๐ winslow1984 (VulDB User) VulDB CNA Team