exploitDog

CVE-2025-46014

Опубликовано: 30 июн. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

Several services in Honor Device Co., Ltd Honor PC Manager v16.0.0.118 was discovered to connect services to the named pipe iMateBookAssistant with default or overly permissive security attributes, leading to a privilege escalation.

Ссылки

https://github.com/Souhardya/Exploit-PoCs/tree/main/HonorPCManager-PrivEsc
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:honor:pc_manager:*:*:*:*:*:*:*:*

Версия до 16.0.0.118 (включая)

EPSS

Процентиль: 20%

0.00065

Низкий

8.8 High

CVSS3

Дефекты

CWE-276

Связанные уязвимости

GHSA-93ww-rvxc-x7gp

CVSS3: 8.8

github

7 месяцев назад

Several services in Honor Device Co., Ltd Honor PC Manager v16.0.0.118 was discovered to connect services to the named pipe iMateBookAssistant with default or overly permissive security attributes, leading to a privilege escalation.

EPSS

Процентиль: 20%

0.00065

Низкий

8.8 High

CVSS3

Дефекты

CWE-276