VYPR

Internet Security

by Avira

CVEs (4)

  • CVE-2026-27750HigMar 5, 2026
    risk 0.51cvss 7.8epss 0.00

    Avira Internet Security contains a time-of-check time-of-use (TOCTOU) vulnerability in the Optimizer component. A privileged service running as SYSTEM identifies directories for cleanup during a scan phase and subsequently deletes them during a separate cleanup phase without…

  • CVE-2026-27749HigMar 5, 2026
    risk 0.51cvss 7.8epss 0.00

    Avira Internet Security contains a deserialization of untrusted data vulnerability in the System Speedup component. The Avira.SystemSpeedup.RealTimeOptimizer.exe process, which runs with SYSTEM privileges, deserializes data from a file located in C:\\ProgramData using .NET…

  • CVE-2026-27748HigMar 5, 2026
    risk 0.51cvss 7.8epss 0.00

    Avira Internet Security contains an improper link resolution vulnerability in the Software Updater component. During the update process, a privileged service running as SYSTEM deletes a file under C:\\ProgramData without validating whether the path resolves through a symbolic…

  • CVE-2017-6417MedMar 21, 2017
    risk 0.44cvss 6.7epss 0.01

    Code injection vulnerability in Avira Total Security Suite 15.0 (and earlier), Optimization Suite 15.0 (and earlier), Internet Security Suite 15.0 (and earlier), and Free Security Suite 15.0 (and earlier) allows a local attacker to bypass a self-protection mechanism, inject…