Lucene search

[email protected]NVD:CVE-2022-24140

HistoryJul 06, 2022 - 1:15 p.m.

CVE-2022-24140

2022-07-0613:15:09

CWE-494

[email protected]

web.nvd.nist.gov

cve-2022-24140

http requests

config file

remote code execution

endpoint

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

CVSS3

6.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.005

Percentile

75.8%

JSON

IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop Screenshot sends HTTP requests in their update procedure in order to download a config file. After downloading the config file, the products will parse the HTTP location of the update from the file and will try to install the update automatically with ADMIN privileges. An attacker Intercepting this communication can supply the product a fake config file with malicious locations for the updates thus gaining a remote code execution on an endpoint.

Affected configurations

Nvd

Node

iobitadvanced_system_careMatch15free

iobitadvanced_system_careMatch15pro

iobitdriver_boosterMatch9

iobititop_screen_recorderMatch2.1

iobititop_screenshotMatch-

iobititop_vpnMatch3.2

VendorProductVersionCPE
iobitadvanced_system_care15cpe:2.3:a:iobit:advanced_system_care:15:*:*:*:free:*:*:*
iobitadvanced_system_care15cpe:2.3:a:iobit:advanced_system_care:15:*:*:*:pro:*:*:*
iobitdriver_booster9cpe:2.3:a:iobit:driver_booster:9:*:*:*:*:*:*:*
iobititop_screen_recorder2.1cpe:2.3:a:iobit:itop_screen_recorder:2.1:*:*:*:*:*:*:*
iobititop_screenshot-cpe:2.3:a:iobit:itop_screenshot:-:*:*:*:*:*:*:*
iobititop_vpn3.2cpe:2.3:a:iobit:itop_vpn:3.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
iobit	advanced_system_care	15	cpe:2.3:a:iobit:advanced_system_care:15::::free:::
iobit	advanced_system_care	15	cpe:2.3:a:iobit:advanced_system_care:15::::pro:::
iobit	driver_booster	9	cpe:2.3:a:iobit:driver_booster:9:::::::*
iobit	itop_screen_recorder	2.1	cpe:2.3:a:iobit:itop_screen_recorder:2.1:::::::*
iobit	itop_screenshot	-	cpe:2.3:a:iobit:itop_screenshot:-:::::::*
iobit	itop_vpn	3.2	cpe:2.3:a:iobit:itop_vpn:3.2:::::::*

References

advanced.com

iobit.com

github.com/tomerpeled92/CVE/

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

CVSS3

6.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.005

Percentile

75.8%

JSON

Related for NVD:CVE-2022-24140

cve1 cvelist1 prion1