CVE-2026-23763
Local Privilege Escalation in VB-Audio VBMatrix Virtual Audio Driver
Publication date: 2026-01-22
Last updated on: 2026-01-22
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| vb-audio | matrix | to 1.0.2.2 (inc) |
| vb-audio | matrix_coconut | to 2.0.2.2 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-668 | The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-23763 is a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver used by VB-Audio Matrix and Matrix Coconut software. The driver allocates a 128-byte buffer in kernel memory but maps an entire 0x1000-byte kernel page containing this buffer into user space due to improper alignment. This mapping exposes adjacent kernel memory with read/write permissions. An unprivileged local attacker can exploit this by opening a device handle and invoking a specific IOCTL command to access and modify kernel memory, bypassing security protections like KASLR and escalating their privileges to SYSTEM level. [2]
How can this vulnerability impact me? :
This vulnerability allows an unprivileged local attacker to read and write arbitrary kernel memory within the exposed page, corrupt kernel objects, bypass Kernel Address Space Layout Randomization (KASLR), and escalate their privileges to SYSTEM. This means an attacker could gain full control over the affected system, potentially leading to unauthorized access, data theft, system manipulation, or disruption of services. [2]