exploitDog

CVE-2025-63946

Опубликовано: 23 фев. 2026

Источник: nvd

CVSS3: 7.4

EPSS Низкий

Описание

A privilege escalation (PE) vulnerability in the Tencent PC Manager app thru 17.10.28554.205 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition.

Ссылки

https://github.com/alexlee820/CVE-2025-63946-Tencent-PC-Manager-EoP/blob/main/README.md
Exploit
Third Party Advisory
https://github.com/alexlee820/Tencent-PC-Manager-EoP
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tencent:pcmanager:*:*:*:*:*:windows:*:*

Версия до 17.10.28554.205 (включая)

EPSS

Процентиль: 8%

0.00181

Низкий

7.4 High

CVSS3

Дефекты

CWE-59

Связанные уязвимости

GHSA-fqqc-4836-hph4

CVSS3: 7.4

github

4 месяца назад

A privilege escalation (PE) vulnerability in the Tencent PC Manager app thru 17.10.28554.205 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition.

EPSS

Процентиль: 8%

0.00181

Низкий

7.4 High

CVSS3

Дефекты

CWE-59