Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.8
Qi-ANXIN QAX Virus Removal allows malicious processes to run unchecked
CVE-2026-3796
Summary
A security flaw in Qi-ANXIN QAX Virus Removal could allow a malicious user to execute unauthorized actions on a computer. This could potentially lead to malicious code being run without being stopped by the operating system. We recommend that users update their software to the latest version to mitigate this risk.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| qianxin | qax_internet_control_gateway | <= 2025-10-22 | – |
Original title
A weakness has been identified in Qi-ANXIN QAX Virus Removal up to 2025-10-22. The affected element is the function ZwTerminateProcess in the library QKSecureIO_Imp.sys of the component Mini Filter...
Original description
A weakness has been identified in Qi-ANXIN QAX Virus Removal up to 2025-10-22. The affected element is the function ZwTerminateProcess in the library QKSecureIO_Imp.sys of the component Mini Filter Driver. Executing a manipulation can lead to improper access controls. The attack is restricted to local execution. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
nvd CVSS2.0
4.3
nvd CVSS3.1
5.3
nvd CVSS4.0
4.8
Vulnerability type
CWE-266
Incorrect Privilege Assignment
CWE-284
Improper Access Control
Published: 9 Mar 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026