Primary

Context

IObit Advanced SystemCare Symlink Following Vulnerability

Vulnerability

A symlink following vulnerability has been identified in IObit Advanced SystemCare version 19. The issue resides in the ASC.exe file within the Service component. This vulnerability requires local access to exploit and is characterized by high complexity. The exploit has been made public and may be used in attacks.

Impact

Exploitation of this vulnerability could lead to unauthorized manipulation of files or directories, as the vulnerability allows for following symbolic links, which could be used to access or modify restricted resources.

Added: May 5, 2026, 1:20 PM

Updated: May 5, 2026, 1:20 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.6

remediation

0.0

relevance

7.5

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.6

remediation

0.0

relevance

7.5

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IObit Advanced SystemCare Symlink Following Vulnerability

Vulnerability

Impact

Affected Products

IObit Advanced SystemCare

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating