CVE-2026-15475
Received Received - Intake

Improper Access Control in MiniTool Partition Wizard Signed Kernel Driver

Vulnerability report for CVE-2026-15475, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-12

Last updated on: 2026-07-12

Assigner: VulDB

Description

A weakness has been identified in MiniTool Partition Wizard up to 13.6. The affected element is an unknown function in the library pwdrvio.sys of the component Signed Kernel Driver. This manipulation causes improper access controls. The attack can only be executed locally. The exploit has been made available to the public and could be used for attacks. Upgrading to version 13.9 is sufficient to fix this issue. The affected component should be upgraded. The vendor was contacted early about this disclosure.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-12
Last Modified
2026-07-12
Generated
2026-07-12
AI Q&A
2026-07-12
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
minitool partition_wizard to 13.9 (exc)
minitool partition_wizard 13.9

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-266 A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-15475 is a local privilege escalation vulnerability in MiniTool Partition Wizard up to version 13.6. It exists in the signed kernel driver component pwdrvio.sys, which exposes a device interface allowing unprivileged users to perform raw disk read and write operations from kernel context.

This driver forwards disk IOCTL requests without enforcing normal Windows access controls, enabling an attacker with standard user privileges to bypass access restrictions. As a result, the attacker can read sensitive file contents and modify protected files by writing directly to their underlying NTFS data clusters.

The vulnerability can only be exploited locally, and a proof-of-concept tool exists demonstrating how to read and write disk sectors through the vulnerable driver.

Impact Analysis

This vulnerability allows an unprivileged local user to bypass Windows file and disk access controls, potentially leading to unauthorized reading and modification of protected files.

  • An attacker could read sensitive file contents that should be protected.
  • An attacker could modify or corrupt protected files by writing directly to their disk clusters.
  • This could lead to data integrity issues, unauthorized data disclosure, or system instability.
Compliance Impact

CVE-2026-15475 allows a local unprivileged user to bypass normal Windows access controls and read or modify protected files by exploiting a vulnerability in the signed kernel driver pwdrvio.sys of MiniTool Partition Wizard. This improper access control can lead to unauthorized disclosure and modification of sensitive data stored on the affected system.

Such unauthorized access and potential data manipulation could negatively impact compliance with data protection standards and regulations like GDPR and HIPAA, which require strict controls to protect sensitive personal and health information from unauthorized access or alteration.

Organizations using affected versions of MiniTool Partition Wizard may face increased risk of data breaches or integrity violations if this vulnerability is exploited, thereby potentially violating regulatory requirements for data confidentiality, integrity, and security.

Upgrading to version 13.9, which fixes this issue, is necessary to mitigate this risk and maintain compliance with such standards.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-15475. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart