CVE-2025-63946

CVE-2025-63946 is a local privilege escalation in Tencent PC Manager (Windows), up to v17.10.28554.205. The root cause is a race condition in handling a temporary folder under C:\Windows\Temp (pcmgr_scan_tmp_) used by QQPCRTP.exe, enabling a non-privileged user to trigger SYSTEM-level file operat...

Tencent Computer Management has a dll hijacking vulnerability

Tencent PC Butler is a free security software from Tencent. Tencent Computer Manager has a dll hijacking vulnerability, which can be exploited by attackers to load untrustworthy dynamic link libraries for command execution...