CVE-2026-27748
- EPSS 0.02%
- Veröffentlicht 05.03.2026 14:15:48
- Zuletzt bearbeitet 13.03.2026 01:22:40
Avira Internet Security contains an improper link resolution vulnerability in the Software Updater component. During the update process, a privileged service running as SYSTEM deletes a file under C:\\ProgramData without validating whether the path r...
CVE-2026-27749
- EPSS 0.06%
- Veröffentlicht 05.03.2026 14:15:35
- Zuletzt bearbeitet 13.03.2026 01:21:04
Avira Internet Security contains a deserialization of untrusted data vulnerability in the System Speedup component. The Avira.SystemSpeedup.RealTimeOptimizer.exe process, which runs with SYSTEM privileges, deserializes data from a file located in C:\...
- EPSS 0.01%
- Veröffentlicht 05.03.2026 14:15:23
- Zuletzt bearbeitet 13.03.2026 01:19:54
Avira Internet Security contains a time-of-check time-of-use (TOCTOU) vulnerability in the Optimizer component. A privileged service running as SYSTEM identifies directories for cleanup during a scan phase and subsequently deletes them during a separ...