Description
PcManager is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability
Published: 2026-04-21
Score: 3.2 Low
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Monitor
AI Analysis

Impact

PcManager includes a privilege bypass flaw that prevents the software from enforcing proper authorization checks. Based on the description, it is inferred that an attacker who exploits this vulnerability could gain elevated privileges, allow unauthorized configuration changes, and potentially disrupt the service availability of the device management platform.

Affected Systems

The affected product is Honor's PcManager, a device management platform. No specific version ranges are supplied in the public advisory, so all releases that contain the unpatched code may be vulnerable until further vendor details are provided.

Risk and Exploitability

The advisory assigns a CVSS score of 3.2, indicating low severity, and an EPSS score of less than 1%, reflecting a very low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog. The likely attack vector is local or requires user interaction, as remote exploitation is not documented.

Generated by OpenCVE AI on April 22, 2026 at 03:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor's security update for PcManager as soon as it becomes available.
  • Restrict administrative access to trusted users and disable unnecessary management interfaces.
  • Enable audit logging and regularly review logs for signs of privilege escalation or unauthorized configuration changes.

Generated by OpenCVE AI on April 22, 2026 at 03:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 22 Apr 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Honor
Honor pc Manager
Vendors & Products Honor
Honor pc Manager

Tue, 21 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-269
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 21 Apr 2026 07:15:00 +0000

Type Values Removed Values Added
Description PcManager is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability
Title Privilege Bypass in PcManager
References
Metrics cvssV3_1

{'score': 3.2, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L'}

Subscriptions

Honor Pc Manager
cve-icon MITRE

Status: PUBLISHED

Assigner: Honor

Published:

Updated: 2026-04-21T13:18:27.938Z

Reserved: 2026-03-09T03:44:51.358Z

Link: CVE-2026-31369

cve-icon Vulnrichment

Updated: 2026-04-21T13:17:52.451Z

cve-icon NVD

Status : Deferred

Published: 2026-04-21T07:16:09.323

Modified: 2026-05-05T20:45:22.917

Link: CVE-2026-31369

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-22T11:46:48Z

Weaknesses