CVE-2026-27749

HIGH SEVERITY

CVSS Score & Metrics

Base Score

7.8 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

Avira Internet Security contains a deserialization of untrusted data vulnerability in the System Speedup component. The Avira.SystemSpeedup.RealTimeOptimizer.exe process, which runs with SYSTEM privileges, deserializes data from a file located in C:\\ProgramData using .NET BinaryFormatter without implementing input validation or deserialization safeguards. Because the file can be created or modified by a local user in default configurations, an attacker can supply a crafted serialized payload that is deserialized by the privileged process, resulting in arbitrary code execution as SYSTEM.

Vulnerability Details

Published Date

March 05, 2026

Last Modified

March 06, 2026

CWE ID

CWE-502

Source

NVD

Vendor

Gen Digital Inc.

Product

Avira Internet Security

External References

https://blog.quarkslab.com/avira-deserialize-delete-and-escalate-the-proper-way-to-use-an-av.html
https://support.avira.com/hc/en-us/articles/360010656158-Current-Avira-versions
https://www.avira.com/en/internet-security
https://www.vulncheck.com/advisories/avira-internet-security-system-speedup-insecure-deserialization

CVE-2026-27749

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment