Access Control Bypass in Microsoft PC Manager
CVE-2026-49161

7.8HIGH

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
9 June 2026

What is CVE-2026-49161?

An improper access control vulnerability in Microsoft PC Manager enables an authorized attacker to locally bypass important security mechanisms, potentially compromising the system's integrity. Users should apply the latest patches to mitigate this issue.

Affected Version(s)

Microsoft PC Manager 1.0.0 < 3.21.6.0

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.