CVE-2026-12780
HighCVSS 7.8Exploitation Probability (EPSS)
Low risk2th percentile — higher than 2% of all known CVEs
Summary
A vulnerability was detected in AOMEI Backupper up to version 8.3.0, concerning an unknown function in the library amwrtdrv.sys of the Kernel Driver component. Executing a manipulation can lead to improper access controls.
Risk Assessment
The attack needs to be launched locally, which increases the risk for systems where AOMEI Backupper is installed. The public disclosure of the exploit may lead to its use by unauthorized users.
Recommendation
It is recommended to update AOMEI Backupper to the latest version to mitigate the risk associated with this vulnerability. Additionally, monitoring system access and implementing further security measures is advised.
Original NVD description (English source)
A vulnerability was determined in AOMEI Backupper up to 8.3.0. Impacted is an unknown function in the library amwrtdrv.sys of the component Kernel Driver. Executing a manipulation can lead to improper access controls. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

