CVE-2026-23764

Name of the Vulnerable Software and Affected Versions VB-Audio Voicemeeter versions 1.1.1.9 and earlier VB-Audio Voicemeeter Banana versions 2.1.1.9 and earlier VB-Audio Voicemeeter Potato versions 3.1.1.9 and earlier VB-Audio Matrix versions 1.0.2.2 and earlier VB-Audio Matrix Coconut versions 2.0.2.2 and earlier

Description The virtual audio drivers (vbvoicemeetervaio64*.sys, vbmatrixvaio64*.sys, vbaudio vmauxvaio*.sys, vbaudio vmvaio*.sys, and vbaudio vmvaio3*.sys) allocate non-paged pool and map it into user space. A length value associated with the allocation is exposed and can be modified by a local attacker. The corrupted length is then used as the IoAllocateMdl length argument without sufficient validation, potentially leading to a kernel crash (Blue Screen of Death), specifically a PAGE FAULT IN NONPAGED AREA error. This allows a local user to cause a denial-of-service on affected systems.

Recommendations Update VB-Audio Voicemeeter to a version later than 1.1.1.9. Update VB-Audio Voicemeeter Banana to a version later than 2.1.1.9. Update VB-Audio Voicemeeter Potato to a version later than 3.1.1.9. Update VB-Audio Matrix to a version later than 1.0.2.2. Update VB-Audio Matrix Coconut to a version later than 2.0.2.2.