Share via

PC manager non admin have full control to enable and disable restricted setting

Anonymous
2024-04-06T05:49:44+00:00

Dear Microsoft Support Team,

I hope this feedback message finds you well. I am writing to bring to your attention a concerning security issue that has been observed with the recently released Microsoft "PC Manager."

Upon conducting thorough testing and analysis, it has come to our attention that there are significant security vulnerabilities when the PC Manager is being used by non-administrator (limited user) accounts. Specifically, limited users have full control over various critical features within the PC Manager interface, which should ideally be restricted to administrator-level access only.

One of the most alarming findings is that non-admin users have the ability to manipulate recommended startup applications, including stopping (turning on and off) essential processes such as the "MS-Anti Virus" application. This capability poses a severe risk as it allows unauthorized users to disable crucial security measures, compromising the overall system integrity.

Additionally, non-admin users can access the process manager within PC Manager and terminate tasks indiscriminately. While some level of control over task management may be permissible for limited users, the current setup grants them unrestricted access, enabling them to terminate processes that should only be managed by administrators.

These issues undermine the fundamental principles of user access control and pose significant security risks to systems running the PC Manager application. It is imperative that these vulnerabilities be addressed promptly to ensure the safety and integrity of users' systems.

We urge the Microsoft development team to investigate these security concerns thoroughly and implement necessary fixes or updates to mitigate the risks associated with PC Manager usage by non-administrator accounts. Enhancing access control mechanisms and restricting certain functionalities to administrator-level permissions would greatly enhance the overall security posture of the application.

Please consider this communication as a constructive effort to improve the security of Microsoft products, and we would appreciate any updates or insights you can provide regarding the resolution of these issues.

Thank you for your attention to this matter, and we look forward to your prompt response.

Sincerely,

***Moved from Windows / Windows 11 / Säkerhet och integritet***

Windows for home | Windows 11 | Security and privacy

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-04-07T11:04:16+00:00

    Hi NaveedArif,

    Welcome to Microsoft Community.

    Thanks for your detailed observations and suggestions.

    We tried to test PC Manager on Windows 11. We encountered a similar situation to yours.

    Windows Security Health Host, although only a quick blip in the "Process management", does offer the same "End" option as the rest of the application.

    Although some single processes are not enough to affect the main functionality of Windows Security, they do offer the possibility of creating risks from the security point of view.

    These occurrences may be related to the underlying code logic used by PC Manager to scan system services/processes.

    Your ideas and suggestions are essential to improve Microsoft products, but this forum is primarily a technical communication platform and the Microsoft development team will not be active in this forum.Members of the Answers community do not interact directly with the product team.

    If possible, you can post a question or idea (with as much detail as possible, including pictures, copied videos, etc., if convenient) about PC Manager on the dedicated feedback platform, where a dedicated developer will pay attention and comment on your feedback. (Or you can directly use the "Feedback" option built into the PC Manager application.)

    After sending your feedback, feel free to share the feedback link in this forum, so that other users with similar issues, including me, can vote for your feedback, the more votes the more likely to get the attention of the development team.

    Thanks for your patience and cooperation.

    Best Regards,

    Kyo - MSFT | Microsoft Community Technical Support

    Was this answer helpful?

    1 person found this answer helpful.
    0 comments
  2. Anonymous
    2024-04-08T13:18:18+00:00

    Thank you for you quick reply and suggestion.

    Please find below the link. Consider sharing your feedback in this forum through a feedback link. By doing so, users facing similar issues, like myself, can also vote for your feedback. Increased votes increase the likelihood of grabbing the attention of the development team.

    https://aka.ms/AApyo1k

    Was this answer helpful?

    0 comments