CVE-2026-12214 | Qihoo 360 Total Security 6.0 Nucleus Engine Monitoring Logic RpcStringBindingComposeW NetworkAddr protection mechanism

Inserito da Angelo Barbosa | Giu 14, 2026 | CVE

A vulnerability marked as critical has been reported in Qihoo 360 Total Security 6.0. This vulnerability affects the function RpcStringBindingComposeW of the component Nucleus Engine Monitoring Logic. Performing a manipulation of the argument NetworkAddr results in protection mechanism failure.

This vulnerability is reported as CVE-2026-12214. The attack requires a local approach. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-12214 | Qihoo 360 Total Security 6.0 Nucleus Engine Monitoring Logic RpcStringBindingComposeW NetworkAddr protection mechanism

Post correlati

CVE-2026-0541 | Axis Communications AB AXIS OS up to 12.9.31 ACAP permission assignment

CVE-2025-8017 | Tenda AC7 15.03.06.44 httpd /goform/setMacFilterCfg formSetMacFilterCfg deviceList stack-based overflow

CVE-2024-7700 | Red Hat Satellite 6 Host Init Config Template Install Packages command injection

CVE-2026-6799 | Comfast CF-N1-S 2.6.0.1 Endpoint mbox-config?method=SET&section=ping_config destination command injection