Main Vulnerability Database Vulnerabilities #VU130262

Embedded malicious code (backdoor) in Daemon Tools - #VU130262

Published: May 6, 2026

Vulnerability identifier: #VU130262

CSH Severity: Critical

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Red

CVE-ID: N/A

CWE-ID: CWE-506

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Daemon Tools

Software vendor:
Disk Soft Ltd

Description

The vulnerability allows a remote attacker to gain unauthorized access to the system.

The vulnerability exists due to presence of embedded malicious functionality (aka backdoor) in the application's installer, downloaded from the official website. A remote attacker can compromise the affected system after installing the infected version of DAEMON Tools software.

Note, the vendor's website was distributing infected version since April 8, 2026.

Remediation

Install updates from vendor's website.

External links

https://securelist.com/tr/daemon-tools-backdoor/119654/

Embedded malicious code (backdoor) in Daemon Tools - #VU130262

Description

Remediation

External links

Please verify you're human