VYPR

Action Download Center

by Iobit

CVEs (1)

  • CVE-2022-24138Jul 6, 2022
    risk 0.00cvss epss 0.01

    IOBit Advanced System Care (Asc.exe) 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the…