CVE-2020-14990
HIGHIOBit Advanced SystemCare Free <13.5.0.263 - Privilege Escalation
Title source: llmDescription
IOBit Advanced SystemCare Free 13.5.0.263 allows local users to gain privileges for file deletion by manipulating the Clean & Optimize feature with an NTFS junction and an Object Manager symbolic link.
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://daniels-it-blog.blogspot.com/2020/06/arbitrary-file-deletion-in-iobit.html
Exploit, Third Party Advisory x_refsource_misc
https://github.com/Daniel-itsec/AdvancedSystemCare
Scores
CVSS v3
7.1
EPSS
0.0015
EPSS Percentile
35.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Details
CWE
CWE-59
Status
published
Products (1)
iobit/advanced_systemcare
13.5.0.263
Published
Jun 22, 2020
Tracked Since
Feb 18, 2026