Vendor

IObit

4 briefs RSS

CVE-2020-37232 - Advanced System Care Unquoted Service Path Vulnerability

Advanced System Care Service 13.0.0.157 suffers from an unquoted service path vulnerability allowing local attackers to escalate privileges by placing a malicious executable in the system root path.

Advanced System Care Service privilege-escalation unquoted service path cve-2020-37232

2r 1t 1c May 16, 2026

high advisory

CVE-2020-37223 - IObit Uninstaller Unquoted Service Path Privilege Escalation

2 rules 1 TTP 1 CVE

IObit Uninstaller 9.5.0.15 contains an unquoted service path vulnerability in the IObitUnSvr service, allowing local attackers to escalate privileges to SYSTEM by placing a malicious executable in the service's path.

Uninstaller 9.5.0.15 privilege-escalation unquoted service path cve-2020-37223

2r 1t 1c May 13, 2026

medium advisory

IObit Advanced SystemCare 19 Symlink Vulnerability (CVE-2026-7832)

2 rules 1 TTP 1 CVE

IObit Advanced SystemCare 19 is vulnerable to a local symlink following attack due to improper handling in ASC.exe, potentially allowing a local attacker to escalate privileges.

Advanced SystemCare 19 symlink privilege-escalation iobit

2r 1t 1c May 5, 2026

medium advisory

IOBit Unlocker Extension DLL Registration via Regsvr32

2 rules 1 TTP

The IOBit Unlocker Extension DLL is being registered via regsvr32.exe, a Windows utility used to unlock files or folders by terminating locking processes, which could be abused for malicious purposes.

Unlocker Extension +3 iobit unlocker regsvr32 dll windows threat-detection

2r 1t Jan 3, 2024