Vulnerability Report

CVE-2026-8501

RCE

Title: Improper access control in PCTCore64.sys allows privilege escalation

RCE

Proof Of Concept

PoC Available for CVE-2026-8501

CWE Category NVD-CWE-noinfo

Published Date Jun 01, 2026

Modified Date Jun 01, 2026

Exploit Status Available

Score 7.8 CVSS v

Exploit Probability (EPSS)

0.13%

Vulnerability Summary

CVE-2026-8501: Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IOCTL handlers. A local attacker with the ability to access or load the affected driver can exploit this vulnerability to perform sensitive and privileged operations on the target system.

Impacted Vendors

Analysis in Progress...

Reference Links

https://kb.cert.org/vuls/id/158530 https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/design/microsoft-recommended-driver-block-rules https://learn.microsoft.com/en-us/windows/win32/secauthz/security-descriptor-definition-language

CVSS v3.1

Source Entity 134c704f-9b21-4f2e-91b3-4a467353bcc0

Severity HIGH

7.8

Attack Vector

LOCAL

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

UNCHANGED

RAW VECTOR CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2026-8501 Exploits & PoCs (Proof Of Concept)

GitHub https://github.com/BlackSnufkin/BYOVD

View Code

June 01, 2026 MODIFIED

Vulnerability data updated via NVD.

June 01, 2026 MODIFIED

Vulnerability data updated via NVD.

June 01, 2026 MODIFIED

Vulnerability data updated via NVD.

Attack Vector Matrix

Access Vector LOCAL

Complexity LOW

Privileges N/A

Interaction NONE

CVSS Vector String


                                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Stack

No specific products linked.