CVE-2026-12778: Local Privilege Escalation in AOMEI Partition Assistant
| Field | Value |
|---|---|
| CVE ID | CVE-2026-12778 |
| CVSS score | 7.8 High |
| Attack vector | Local |
| Auth required | None reported for local interaction with the vulnerable device |
| Patch status | No verified fixed version publicly confirmed in the sources reviewed |
TL;DR -
ampa10.sysin AOMEI Partition Assistant up to 10.10.1 exposes unsafe raw disk access. - Local users may be able to turn that into privilege escalation on Windows hosts. - Public exploit details exist; no confirmed in-the-wild exploitation is cited yet.
Vulnerability at a Glance
CVE-2026-12778 is a local privilege escalation issue in AOMEI Partition Assistant tied to the ampa10.sys kernel driver. The NVD describes the flaw as an improper access control vulnerability affecting AOMEI Partition Assistant up to 10.10.1. Public technical reporting specifically names AOMEI Partition Assistant Standard 10.10.1 as affected.
The practical risk is not just “a driver bug” in the abstract. The available writeup indicates that a low-privileged local user can interact with a device exposed by the driver, \\.\wowrt, and use it to perform raw disk read and write operations that would normally require higher privileges. On Windows, arbitrary raw disk I/O is a powerful primitive. Even when a proof only shows bypass of direct disk access restrictions, defenders should treat that as a serious privilege boundary failure because disk-level writes can enable persistence, credential theft, boot manipulation, or post-exploitation privilege escalation paths.
What Is This Vulnerability?
According to the NVD description, the vulnerable component is unknown code within the ampa10.sys library, part of the AOMEI Partition Assistant kernel driver stack. The core issue is insufficient access control around the interface the driver exposes. Rather than correctly enforcing which users can issue privileged requests, the driver appears to accept requests from a standard local user and pass them to lower disk layers in kernel context.
The public technical writeup provides the most actionable detail available in open sources. It states that the driver exposes the device path \\.\wowrt and allows a non-admin user to access paths such as \\.\wowrt\Partition0\DISK1. In the demonstrated scenario, the user could not directly access the target physical disk through normal Windows protections, but could write a 512-byte marker through the AOMEI driver and later confirm it on the underlying physical drive. That strongly supports the conclusion that the driver can be abused as a privileged raw disk I/O proxy.
Technical Notes
The issue is consistent with a class of Windows driver vulnerabilities where a device object is exposed with overly broad permissions or where IOCTL handling lacks caller validation. In these cases, user mode does not need kernel code execution to cause harm. It only needs a handle to the driver device and a code path that forwards dangerous operations.
A representative device path from the public writeup is shown below:
\\.\wowrt
\\.\wowrt\Partition0\DISK1
Who Is Affected?
The affected product is AOMEI Partition Assistant, with the NVD stating that versions up to 10.10.1 are vulnerable. The publicly accessible technical writeup explicitly references AOMEI Partition Assistant Standard 10.10.1 and the driver file ampa10.sys. Based on the evidence currently available, defenders should assume all AOMEI Partition Assistant releases through 10.10.1 may be affected unless proven otherwise by vendor guidance.
There is an important limitation to call out: no verified vendor advisory and no confirmed fixed version were found in the sources reviewed. That means defenders cannot safely assume a later build is remediated unless they can validate it from a trusted vendor release note, signed driver package, or direct testing. In the absence of a published fix statement, the right operational assumption is that any environment still running ampa10.sys from the affected product family may remain exposed.
| Product | Affected versions | Fixed version |
|---|---|---|
| AOMEI Partition Assistant | Up to and including 10.10.1 | Unknown |
| AOMEI Partition Assistant Standard | Publicly named: 10.10.1 | Unknown |
Technical Notes
You can quickly check whether the driver is present on Windows endpoints with PowerShell or CMD:
Get-ChildItem -Path "C:\Windows\System32\drivers\ampa10.sys" -ErrorAction SilentlyContinue
Get-CimInstance Win32_SystemDriver | Where-Object { $_.Name -match "ampa|aomei|wowrt" } | Select-Object Name, State, PathName
sc query type= driver | findstr /i "ampa aomei"
driverrquery /v | findstr /i "ampa10.sys"
CVSS Score and Risk Context
The assigned severity is CVSS v3.1 7.8 High. The attack vector is Local, which means an attacker needs code execution or an interactive foothold on the target host first. That matters for prioritization: this is not a remote pre-auth internet worm issue. However, local driver bugs often become valuable in real intrusions because they help an attacker go from user-level access to SYSTEM or administrator-equivalent control.
The risk is amplified by two facts from the available record. First, the NVD notes that “the exploit has been disclosed to the public and may be used.” Second, the vulnerable component is a kernel driver, which usually means successful abuse happens below many user-mode security controls. Even when the initial bug is “just” unauthorized disk access, defenders should assume potential impact to confidentiality and integrity is high because low-privilege users may be able to tamper with system data that should be protected by Windows access checks.
Exploitation Status
A public proof of concept or public exploit detail is known to exist. The NVD explicitly states that the exploit has been disclosed publicly, and the accessible third-party technical writeup provides a reproducible demonstration of unauthorized raw disk writes and reads through the vulnerable driver. That is enough for most defenders to treat the issue as practically exploitable in lab conditions.
At the same time, confirmed in-the-wild exploitation is not established by the sources reviewed. The CVE is not listed in CISA KEV as of 2026-06-21, and no primary-source alert in the reviewed material attributes active campaigns to this issue. If you are making triage decisions, the right wording is: public exploit details exist, but there is no CISA-confirmed active exploitation in the available data. In the absence of broader telemetry, Windows systems with untrusted local users, RDP exposure, VDI pools, or shared admin workstations should still treat it as high priority because LPE bugs are commonly chained after initial compromise.
What Defenders Should Do Next
For most environments, the next step is a short validation project rather than a long research cycle. Identify all Windows endpoints with AOMEI Partition Assistant or ampa10.sys, determine whether any are multi-user or exposed to untrusted local access, and prioritize those for removal or isolation. If your fleet includes VDI, jump boxes, lab systems, helpdesk machines, or servers where multiple admins log on interactively, move those to the top of the queue.
Then update your detections and asset records. Even without confirmed in-the-wild exploitation, public exploit details make this a realistic post-compromise escalator. Track the driver as a risky component, alert on its presence, and monitor for future vendor guidance. Until a trustworthy fixed version is published and validated, defenders should assume AOMEI Partition Assistant up to 10.10.1 remains vulnerable and that mitigation is primarily about removal, disablement, or strict local access control.
How to Detect It
Detection for this CVE is not as straightforward as scanning a web log for a URL. The abuse path is local and driver-based, so defenders need to combine asset identification, driver load monitoring, and behavioral indicators of unusual raw disk access. Start by identifying systems where AOMEI Partition Assistant is installed or where ampa10.sys is present or loaded. Then review whether those systems are used by multiple local users, developers, helpdesk staff, or any population where a non-admin foothold is plausible.
The next layer is telemetry. Because the public writeup indicates access via \\.\wowrt, defenders should hunt for process activity involving that string, suspicious access to physical disk paths, and service or driver state changes involving AOMEI components. Raw disk manipulation from unexpected user processes is especially suspicious on workstations. If your EDR captures device object access, file handle telemetry, command lines, or kernel driver events, build detections around those data sources.
Technical Notes
PowerShell example to identify the installed binary and basic metadata:
Get-Item "C:\Windows\System32\drivers\ampa10.sys" | Select-Object FullName, Length, CreationTime, LastWriteTime, VersionInfo
Windows event and telemetry hunting ideas:
DeviceImageLoadEvents
| where FileName =~ "ampa10.sys"
| project Timestamp, DeviceName, InitiatingProcessFileName, FolderPath, SHA1, Signer
DeviceProcessEvents
| where ProcessCommandLine has_any ("wowrt", "PhysicalDrive", "Partition0")
| project Timestamp, DeviceName, AccountName, FileName, ProcessCommandLine
DeviceFileEvents
| where FolderPath has @"\System32\drivers\ampa10.sys"
or FileName =~ "ampa10.sys"
| project Timestamp, DeviceName, ActionType, InitiatingProcessFileName, FolderPath, SHA1
Concrete log or pattern to monitor if your tooling exposes device path access:
\\.\wowrt
\\.\wowrt\Partition0\DISK
\\.\PhysicalDrive
Sigma-style concept for EDRs that capture suspicious command line or API usage:
title: Possible Abuse of AOMEI wowrt Device
logsource:
category: process_creation
product: windows
detection:
selection:
CommandLine|contains:
- '\\.\wowrt'
- '\\.\PhysicalDrive'
- 'Partition0\DISK'
condition: selection
level: high
If your tools do not expose device object access, assume detection coverage is limited and prioritize removal or containment over attempting perfect detection.
Mitigation and Patching
The most important limitation here is that no verified fixed version is publicly confirmed in the reviewed sources. The NVD notes that the vendor was contacted but did not respond, and no trustworthy advisory with a remediated version number was identified. Because of that, defenders should not publish or rely on an unverified “fixed in version X” claim. The safe statement is: affected versions are up to 10.10.1, and a fixed version is unknown from currently reviewed public sources.
Operationally, mitigation means reducing exposure from the vulnerable driver. If AOMEI Partition Assistant is not required, uninstalling the software and confirming the driver is removed is the cleanest response. If it is required for a business process, restrict local access to those systems, reduce opportunities for untrusted code execution, and consider disabling the vulnerable driver or service if that does not break essential operations. On shared workstations and servers, local privilege escalation flaws deserve higher urgency because a single low-privilege foothold can become full host compromise.
Technical Notes
If installed via standard Windows package management, first inventory and remove the product where possible:
Get-Package | Where-Object { $_.Name -match "AOMEI|Partition Assistant" }
If a package entry is available, uninstall through Apps/Features, enterprise software management, or the package’s registered uninstaller. Then verify the driver file is gone:
Test-Path "C:\Windows\System32\drivers\ampa10.sys"
If immediate removal is not possible, inspect and stop the driver service if present:
sc query type= driver | findstr /i "ampa aomei wowrt"
sc stop ampa10
sc config ampa10 start= disabled
On systems where the service name differs, identify it first:
Get-CimInstance Win32_SystemDriver | Where-Object { $_.PathName -match "ampa10\.sys" } | Select-Object Name, State, StartMode, PathName
As a workaround, restrict software execution and local logon paths on hosts where the product remains installed. AppLocker or WDAC will not fix the driver bug directly, but they can reduce the chance that a low-privilege user can run custom tooling to abuse it.
References
| Source | URL |
|---|---|
| NVD CVE record | https://nvd.nist.gov/vuln/detail/CVE-2026-12778 |
| CISA KEV catalog | https://www.cisa.gov/known-exploited-vulnerabilities-catalog |
| Public technical writeup | https://winslow1984.com/books/cve-collection/page/aomei-partition-assistant-10101-kernel-driver-ampa10sys-local-privilege-escalation |
| Product site | https://www.diskpart.com |
| Vendor download page | https://www.aomeitech.com/pa/download.html |
For further reading, check our articles on what a SOC does and vulnerability management triage workflows.
This article may contain affiliate links. We earn a commission on qualifying purchases at no extra cost to you.