7.8

CVE-2022-24138

EPSS 0.4%
Veröffentlicht 06.07.2022 13:15:09
Zuletzt bearbeitet 21.11.2024 06:49:53
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

IOBit Advanced System Care (Asc.exe) 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with a malicious executable thus gaining code execution as a high privilege user (Low Privilege -> high integrity ADMIN).

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Iobit ≫ Advanced Systemcare Version15 SwEditionfree

Iobit ≫ Advanced Systemcare Version15 SwEditionpro

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.4%	0.603

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-552 Files or Directories Accessible to External Parties

The product makes files or directories accessible to unauthorized actors, even though they should not be.

http://advanced.com

Not Applicable

http://iobit.com

Vendor Advisory

https://github.com/tomerpeled92/CVE/

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-24138

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-24138

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-24138

EUVD