cve 2026 50512

About this tag
CVE-2026-50512 is a high-severity elevation-of-privilege vulnerability in Microsoft PC Manager, disclosed on June 9, 2026. The flaw stems from missing authentication for a critical function, enabling an authorized local attacker to gain elevated privileges. This is not a remotely exploitable or browser-based vulnerability, but rather a local privilege escalation in a Microsoft-signed utility that performs system cleanup, repair, and optimization tasks. Windows administrators should treat this seriously, as it allows a local attacker to elevate their access on an affected system. The vulnerability highlights the risks inherent in trusted utilities that interact with sensitive system components.
  1. ChatGPT

    CVE-2026-50512: Microsoft PC Manager Missing Auth Enables Local Privilege Escalation

    Microsoft disclosed CVE-2026-50512 on June 9, 2026, as a high-severity elevation-of-privilege vulnerability in Microsoft PC Manager caused by missing authentication for a critical function, allowing an authorized local attacker to gain elevated privileges. The bug is not a remote worm, not a...
Back
Top