Vulnerabilities ›

CVE-2026-7832

High

CWE-59 — Weakness Type

                    Published: May 5, 2026                      ·  Modified: May 12, 2026                      ·  Source: NVD                

CVSS v3

7.0

🔗 NVD Official

📄 Description (English)

A security flaw has been discovered in IObit Advanced SystemCare 19. This affects an unknown part of the file ASC.exe of the component Service. The manipulation results in symlink following. Attacking locally is a requirement. This attack is characterized by high complexity. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be used for attacks.

🤖 AI Executive Summary

IObit Advanced SystemCare 19 contains a symlink following vulnerability in ASC.exe that requires local access and high attack complexity. The flaw could allow attackers to manipulate file operations through symbolic link exploitation.

📄 Description (Arabic)

تم اكتشاف ثغرة في IObit Advanced SystemCare 19 تسمح بمتابعة الروابط الرمزية في مكون الخدمة ASC.exe. تتطلب الثغرة وصول محلي وتتميز بتعقيد هجوم عالي، مما يجعل الاستغلال صعباً نسبياً.

🤖 ملخص تنفيذي (AI)

يحتوي IObit Advanced SystemCare 19 على ثغرة متابعة الروابط الرمزية في ASC.exe تتطلب وصول محلي وتعقيد هجوم عالي. قد تسمح الثغرة للمهاجمين بمعالجة عمليات الملفات من خلال استغلال الروابط الرمزية.

🤖 AI Intelligence Analysis Analyzed: May 10, 2026 10:18

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: medium

🏢 Affected Saudi Sectors

government healthcare

🎯 MITRE ATT&CK Techniques

T1547.013 T1547.001

⚖️ Saudi Risk Score (AI)

7.0

/ 10.0

🔧 Remediation Steps (English)

Update IObit Advanced SystemCare to the latest patched version immediately. Restrict local system access to trusted users only and monitor file system operations for suspicious symlink activity.

🔧 خطوات المعالجة (العربية)

قم بتحديث IObit Advanced SystemCare إلى أحدث إصدار معدل فوراً. قيد الوصول المحلي للنظام للمستخدمين الموثوقين فقط ومراقبة عمليات نظام الملفات للكشف عن نشاط الروابط الرمزية المريب.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.14.2.1 A.12.6.1

🔵 SAMA CSF

ID.RA-1 PR.IP-12

🟡 ISO 27001:2022

27001:A.12.6.1 27001:A.14.2.1

🔗 References & Sources 4

🔗

https://github.com/usernameone101/Writeups/blob/main/IObit%20Zero%20Day%20(Updated%20v2...

cna@vuldb.com

🔗

https://vuldb.com/submit/797630

cna@vuldb.com

🔗

https://vuldb.com/vuln/361111

cna@vuldb.com

🔗

https://vuldb.com/vuln/361111/cti

cna@vuldb.com

📊 CVSS Score

7.0

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack VectorL — Low / Local

Attack ComplexityH — High

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityH — High

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.0

CWECWE-59

EPSS0.01%

Exploit No

Patch ✗ No

Published 2026-05-05

Source Feed nvd

🇸🇦 Saudi Risk Score

7.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-59

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-7832

💬 Comments

Introduce Yourself

Sign In Required