NULL Pointer Dereference Vulnerability in Little Orbit's GFAC Driver
CVE-2026-12166

Currently unrated

Key Information:

Vendor
CVE Published:
2 July 2026

What is CVE-2026-12166?

A vulnerability in the GFAC Driver from Little Orbit allows local attackers to exploit a NULL pointer dereference, which can lead to a denial of service. This occurs when crafted requests are sent to the driver, resulting in an unexpected system crash. Such vulnerabilities can severely impact system stability and availability, emphasizing the need for timely updates and patches.

Affected Version(s)

GameFirst Anti-Cheat 0 <= 2025-07-07

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.