CVE-2026-27748

HIGH 7.8

Avira Internet Security Arbitrary File Deletion via Improper Link Resolution

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

Avira Internet Security contains an improper link resolution vulnerability in the Software Updater component. During the update process, a privileged service running as SYSTEM deletes a file under C:\\ProgramData without validating whether the path resolves through a symbolic link or reparse point. A local attacker can create a malicious link to redirect the delete operation to an arbitrary file, resulting in deletion of attacker-chosen files with SYSTEM privileges. This may lead to local privilege escalation, denial of service, or system integrity compromise depending on the targeted file and operating system configuration.

CWE	CWE-59
Vendor	gen digital inc.
Product	avira internet security
Published	Mar 5, 2026
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for gen digital inc. avira internet security

Be the first to know when new high vulnerabilities affecting gen digital inc. avira internet security are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Gen Digital Inc. / Avira Internet Security

0 ≤ 1.1.109.1990

References

NVD ↗ CVE.org ↗ EPSS Data ↗

support.avira.com: https://support.avira.com/hc/en-us/articles/360010656158-Current-Avira-versions avira.com: https://www.avira.com/en/internet-security gendigital.com: https://www.gendigital.com/us/en/contact-us/security-advisories/