CVE-2026-8049

Received Received - Intake

SignalRGB Local Privilege Escalation via IOCTL

Publication date: 2026-06-17

Last updated on: 2026-06-17

Assigner: CERT/CC

Description

In SignalRGB versions prior to 1.3.7.0, the \\.\SignalIo device object is created without an explicit SDDL security descriptor and without FILE_DEVICE_SECURE_OPEN. This results in overly permissive default access control, allowing any authenticated local user to obtain a handle to the device and issue privileged IOCTLs.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-06-17

Last Modified

2026-06-17

Generated

2026-06-18

EPSS Evaluated

N/A

NVD

CVE-2026-8049

Affected Vendors & Products

Vendor	Product	Version / Range
signalrgb	signalrgb	to 1.3.7.0 (exc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions have not been generated yet.

Hi! I’m here to help you understand CVE-2026-8049. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-8049

SignalRGB Local Privilege Escalation via IOCTL

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart