Skip to main content

Microsoft PC Manager EUVD-2026-35528

| CVE-2026-49161 HIGH
Improper Access Control (CWE-284)
2026-06-09 secure@microsoft.com GHSA-25vj-c5mm-vwxg
Authentication Bypass Microsoft Pc Manager
7.8
CVSS 3.1 · NVD
Temporal: 6.8
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CIRCL (temporal)
6.8 MEDIUM
cvss

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Jun 09, 2026 - 17:43 vuln.today
CVE Published
Jun 09, 2026 - 17:17 nvd
HIGH 7.8

DescriptionNVD

Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally.

AnalysisAI

Local privilege escalation in Microsoft PC Manager allows an authenticated low-privileged attacker to bypass a security feature on the affected system, leading to high impact on confidentiality, integrity, and availability. The flaw stems from improper access control (CWE-284) and currently has no public exploit identified at time of analysis. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain low-privileged local account
Delivery
Identify PC Manager component on host
Exploit
Invoke vulnerable access-controlled interface
Execution
Bypass security feature check
Persist
Gain elevated control of system
Impact
Disable protections or persist
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to already have authenticated, low-privileged local access to a Windows endpoint with Microsoft PC Manager installed, per the AV:L/PR:L CVSS metrics. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Multiple signals point to a moderate, not urgent, real-world risk. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has gained an initial foothold as a standard user - for example, via a phishing payload or a stolen non-admin credential - runs a local tool that invokes the vulnerable Microsoft PC Manager interface to bypass a security feature and gain elevated control of the host. With high confidentiality, integrity, and availability impact, the attacker can then disable protections, alter system state, or stage further tools for persistence. …
Remediation Apply the update referenced in Microsoft's advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-49161; the available intelligence indicates a patch available per vendor advisory but does not list an exact fixed version, so administrators should consult MSRC for the current shipping build and ensure PC Manager auto-update is enabled or push the updated installer via management tooling. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Inventory all systems running Microsoft PC Manager and assess user account access patterns. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-35528 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy