CVE-2026-7832— IObit Advanced SystemCare Service ASC.exe symlink
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-7832
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IObit Advanced SystemCare Service ASC.exe symlink
Source: NVD (National Vulnerability Database)
Vulnerability Description
A security flaw has been discovered in IObit Advanced SystemCare 19. This affects an unknown part of the file ASC.exe of the component Service. The manipulation results in symlink following. Attacking locally is a requirement. This attack is characterized by high complexity. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be used for attacks.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-61
Source: NVD (National Vulnerability Database)
Vulnerability Title
IOBit IObit Advanced SystemCare 后置链接漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IOBit IObit Advanced SystemCare是IOBit公司的一款系统管理实用程序。该程序主要用于扫描、修复和优化系统等。 IObit Advanced SystemCare 19版本存在后置链接漏洞,该漏洞源于文件ASC.exe中Service组件的问题,可能导致符号链接跟随。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| IObit | Advanced SystemCare | 19 | cpe:2.3:a:iobit:advanced_systemcare:*:*:*:*:*:*:*:* |
II. Public POCs for CVE-2026-7832
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-7832
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: IObit
- CVE-2016-20059
IObit Malware Fighter 4.3.1 Unquoted Service Path Privilege - CVE-2016-20055
IObit Advanced SystemCare 10.0.2 Unquoted Service Path Privi - CVE-2020-36952
IObit Uninstaller 10 Pro - Unquoted Service Path - CVE-2025-0223
IObit Protected Folder IOCTL IURegistryFilter.sys 0x8001E010 - CVE-2025-0222
IObit Protected Folder IOCTL IUProcessFilter.sys 0x8001E004
Same weakness: CWE-61
- CVE-2026-29203
cPanel 安全漏洞 - CVE-2026-42275
zrok: WebDAV drive backend follows symlinks outside DriveRoo - CVE-2026-31893
Tunnelblick arbitrary file read via symlink following in tun - CVE-2026-43570
OpenClaw 2026.3.22 < 2026.4.5 - Symlink Traversal in Remote - CVE-2026-7397
NousResearch hermes-agent file_tools.py _check_sensitive_pat
V. Comments for CVE-2026-7832
No comments yet