cve 2026-49161

CVE-2026-49161 is an Important-rated security feature bypass vulnerability in Microsoft PC Manager, disclosed by Microsoft on June 9, 2026, as part of the June Patch Tuesday release. This update addressed roughly 200 vulnerabilities across Windows, Office, Exchange, developer tools, and related products. The vulnerability is notable because Microsoft PC Manager is a consumer-facing optimization and cleanup utility that operates in a trust zone between system maintenance and core Windows components. While not the most critical bug of the month, it represents the type of edge-case weakness that administrators should monitor, as it could potentially be exploited to bypass security features in the utility.