关键漏洞信息 漏洞编号: JVN#05562338 漏洞名称: Improper file access permission settings in PC Time Tracer 发布日期: 2025/06/03 更新日期: 2025/06/03 影响产品 受影响版本: PC Time Tracer versions prior to 5.2 漏洞描述 类型: Incorrect default permissions (CWE-276) CVSS评分: - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Base Score 7.0 - CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Base Score 7.3 CVE编号: CVE-2025-46355 影响 风险: Arbitrary code may be executed with SYSTEM privilege on Windows system where the product is running by a local authenticated attacker. 解决方案 建议: Update the software to the latest version according to the information provided by the developer. 厂商状态 厂商: Keiyo System Co., LTD 链接: Report on Vulnerability Response in PC Time Tracer (Text in Japanese) 其他信息 CVE编号: CVE-2025-46355 JVN iPedid编号: JVNDB-2025-000035