CVE-2022-24138
Summary
| CVE | CVE-2022-24138 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-07-06 13:15:00 UTC |
| Updated | 2022-07-14 01:09:00 UTC |
| Description | IOBit Advanced System Care (Asc.exe) 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with a malicious executable thus gaining code execution as a high privilege user (Low Privilege -> high integrity ADMIN). |
Risk And Classification
Problem Types: CWE-552
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Iobit | Advanced Systemcare | 15 | All | All | All |
| Application | Iobit | Advanced Systemcare | 15 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| GitHub - tomerpeled92/CVE | MISC | github.com | |
| Advanced Interconnections | Interconnect Solutions | MISC | advanced.com | |
| Clean, Optimize, Speed Up and Secure PC - Freeware Download - IObit | MISC | iobit.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.