CVE-2026-8501EPSS p2.9%

CVE-2026-8501CVE-2026-8501

Description

Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IOCTL handlers. A local attacker with the ability to access or load the affected driver can exploit this vulnerability to perform sensitive and privileged operations on the target system.

Scoring

CVSS 7.8 ()
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.13% probability of exploitation · percentile 2.9% · 2026-06-19T12:03:05Z
Last modified2026-06-01

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-45600
CVE
Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference Vulnerability
CVE
CVE-2025-33067
CVE
Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability
CVE
Microsoft Windows Kernel Privilege Escalation Vulnerability
CVE
Microsoft Win32k Privilege Escalation Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.