AOMEI Dynamic Disk Mgmt <=10.10.1 Kernel Driver ddmdrv.sys ImprAcc (Local)
CVE-2026-12779 Published on June 21, 2026
AOMEI Dynamic Disk Manager Kernel Driver ddmdrv.sys access control
A vulnerability was found in AOMEI Dynamic Disk Manager up to 10.10.1. This issue affects some unknown processing in the library ddmdrv.sys of the component Kernel Driver. Performing a manipulation results in improper access controls. The attack must be initiated from a local position. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Timeline
Advisory disclosed
VulDB entry created
VulDB entry last update
Weakness Types
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2026-12779 has been classified to as an Authorization vulnerability or weakness.
Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Products Associated with CVE-2026-12779
Want to know whenever a new CVE is published for Aomei Dynamic Disk Manager? stack.watch will email you.
Affected Versions
AOMEI Dynamic Disk Manager:- Version 10.10.0 is affected.
- Version 10.10.1 is affected.