cvedb.io
CVE-2022-24138
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2022-07-06T13:15:09.230 · Last modified 2026-06-17T04:31:22.040

Summary

IOBit Advanced System Care (Asc.exe) 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with a malicious executable thus gaining code execution as a high privilege user (Low Privilege -> high integrity ADMIN).

Affected products

iobit — advanced_systemcare

Does this affect you?

Add your gear to cvedb and we'll alert you only when iobit ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.