Skip to main content

Advanced System Care

2 CVEs product

Monthly

CVE-2022-24140 MEDIUM This Month

IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop Screenshot sends HTTP requests in their update procedure in order to download a config file. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

RCE Advanced System Care Driver Booster Itop Screen Recorder Itop Screenshot +1
NVD GitHub VulDB
CVSS 3.1
6.6
EPSS
1.0%
CVE-2022-24139 HIGH This Week

In IOBit Advanced System Care (AscService.exe) 15, an attacker with SEImpersonatePrivilege can create a named pipe with the same name as one of ASCService's named pipes. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced System Care
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.4%
EPSS 1% CVSS 6.6
MEDIUM This Month

IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop Screenshot sends HTTP requests in their update procedure in order to download a config file. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

RCE Advanced System Care Driver Booster +3
NVD GitHub VulDB
EPSS 0% CVSS 7.8
HIGH This Week

In IOBit Advanced System Care (AscService.exe) 15, an attacker with SEImpersonatePrivilege can create a named pipe with the same name as one of ASCService's named pipes. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced System Care
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy