CVE-2026-27750

Name of the Vulnerable Software and Affected Versions Avira Internet Security (affected versions not specified)

Description A time-of-check time-of-use (TOCTOU) issue exists in the Optimizer component. A privileged service running as SYSTEM identifies directories for cleanup during a scan phase and then deletes them in a separate cleanup phase without revalidating the target path. A local attacker can replace a previously scanned directory with a junction or reparse point before deletion, causing the privileged process to delete an unintended system location. This could lead to the deletion of protected files or directories, potentially resulting in local privilege escalation, denial of service, or system integrity compromise, depending on the target.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.