VDB

CVE-2026-8501

CVE-2026-8501 PUBLISHED CVSS 7.8 HIGH

Reported by certcc · Published June 1, 2026

Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IOCTL handlers. A local attacker with the ability to access or load the affected driver can exploit this vulnerability to perform sensitive and privileged operations on the target system.

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
SymantecPC Tools Internet Security*
SymantecPC Tools Internet Security*

Timeline

  • Jun 1, 2026 CVE Published
  • Jun 1, 2026 CVE Updated
  • Jun 3, 2026 Coalition ESS Score
  • Jun 5, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›