CVE-2026-8050 PUBLISHED

CVE-2026-8050

Assigner: certcc
Reserved: 06.05.2026 Published: 17.06.2026 Updated: 18.06.2026

In SignalRGB versions prior to 1.3.7.0, seven of the thirteen IOCTL handlers dereference the SystemBuffer pointer without first verifying that it is non-NULL. Sending an IOCTL with an empty input buffer causes a NULL pointer dereference, resulting in a kernel crash.

Product Status

Vendor	SignalRGB
Product	SignalRGB kernel driver
Versions	affected from 0 to 1.3.7.0 (excl.)

References

https://kb.cert.org/vuls/id/380058

Problem Types

CWE-476 NULL Pointer Dereference