Home

Description

Incorrect default permissions issue in PC Time Tracer prior to 5.2. If exploited, arbitrary code may be executed with SYSTEM privilege on Windows system where the product is running by a local authenticated attacker.

PUBLISHED Reserved 2025-05-28 | Published 2025-06-03 | Updated 2025-06-03 | Assigner jpcert




HIGH: 7.3CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

HIGH: 7.0CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Incorrect default permissions

Product status

prior to 5.2
affected

References

www.keiyo-system.co.jp/archives/11305

jvn.jp/en/jp/JVN05562338/

cve.org (CVE-2025-46355)

nvd.nist.gov (CVE-2025-46355)

Download JSON