CVE-2026-3609 | THREATINT

Description

Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRP_MJ_REITS command interface, which allows any user process to request a PROCESS_ALL_ACCESS. Cross reference to KVE 2023-5589 (https://krcert.or.kr)

PUBLISHED Reserved 2026-03-05 | Published 2026-05-11 | Updated 2026-05-11 | Assigner certcc

Problem types

CWE-269 Improper Privilege Management

CWE-732 Incorrect Permission Assignment for Critical Resource

CWE-284 Improper Access Control

CWE-266 Incorrect Privilege Assignment

Product status

10.0.10011.16384

affected

References

crcert.or.kr

blacksnufkin.github.io/posts/AntiCheat-LPE-CVE-2026-3609/

cve.org (CVE-2026-3609)

nvd.nist.gov (CVE-2026-3609)

Download JSON