Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability
Vulnerability Description
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Vulnerability Title
Gen Digital Avast Cleanup Premium 安全漏洞
Vulnerability Description
Gen Digital Avast Cleanup Premium是美国Gen Digital公司的一个高级PC清理优化工具,具备深度垃圾清理与自动化维护功能。 Gen Digital Avast Cleanup Premium 24.2.16593.17810版本存在安全漏洞,该漏洞源于TuneupSvc存在符号链接处理不当,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A