IOCTL Handler Vulnerability in SignalRGB Software by SignalRGB
CVE-2026-8050

Currently unrated

Key Information:

Vendor: Signalrgb
Status: Signalrgb Kernel Driver
Vendor: CVE Published:; 17 June 2026

What is CVE-2026-8050?

In earlier versions of SignalRGB, specifically those before 1.3.7.0, a significant vulnerability exists within the IOCTL handlers. This issue arises from the improper handling of the SystemBuffer pointer, where seven out of thirteen handlers do not verify if the pointer is non-NULL. When an IOCTL command is executed with an empty input buffer, it leads to a NULL pointer dereference, which can cause a kernel crash, potentially impacting system stability and security.

Affected Version(s)

SignalRGB kernel driver 0 < 1.3.7.0

References

https://kb.cert.org/vuls/id/380058

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-8050 Data

JSON

Signalrgb

What is CVE-2026-8050?

Affected Version(s)

References

Timeline