VDB
CVE-2026-8501
CVE-2026-8501
PUBLISHED
CVSS 7.8 HIGH
Reported by certcc · Published June 1, 2026
Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IOCTL handlers. A local attacker with the ability to access or load the affected driver can exploit this vulnerability to perform sensitive and privileged operations on the target system.
Risk Scores
CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | PC Tools Internet Security | * |
| Symantec | PC Tools Internet Security | * |
Timeline
- Jun 1, 2026 CVE Published
- Jun 1, 2026 CVE Updated
- Jun 3, 2026 Coalition ESS Score
- Jun 5, 2026 EPSS Score