CVE-2022-24138

Published: Jul 6, 2022Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

IOBit Advanced System Care (Asc.exe) 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with a malicious executable thus gaining code execution as a high privilege user (Low Privilege -> high integrity ADMIN).

Affected (2)

Products: Iobit: Advanced Systemcare

1 product

Advanced Systemcare

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Iobit Advanced Systemcare	Version 15
Iobit Advanced Systemcare	Version 15

Related CWEs

Files or Directories Accessible to External Parties

The product makes files or directories accessible to unauthorized actors, even though they should not be.

References (6)

http://advanced.com

Source: cve@mitre.org

Not Applicable

http://iobit.com

Source: cve@mitre.org

Vendor Advisory

https://github.com/tomerpeled92/CVE/

Source: cve@mitre.org

Third Party Advisory

http://advanced.com

Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable

http://iobit.com

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://github.com/tomerpeled92/CVE/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.