What the vulnerability does
01Description
Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network.
CVE-2025-53795
CRITICAL
CVE-2025-53795: Microsoft PC Manager Elevation of Privilege Vulnerability
CVSS base score
9.1/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
August 21, 2025
CVE published
February 26, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-13807 orionsec orion-ops API MachineKeyController.java MachineKeyController improper authorization
CVE-2024-43731 Adobe Experience Manager | Improper Authorization (CWE-285)
CVE-2026-46656 Bludit CMS has improper authorization and mediation failure leading to persistent ghost sessions
CVE-2025-64751 OpenFGA Improper Policy Enforcement
CVE-2026-7644 ChatGPTNextWeb NextChat actions.ts addMcpServer improper authorization
