Improper Link Resolution Vulnerability in Bitdefender Products
CVE-2026-6851

7HIGH

Key Information:

Vendor
CVE Published:
14 July 2026

What is CVE-2026-6851?

An improper link resolution vulnerability exists in the File Shredder module utilized in Bitdefender Total Security and Internet Security on Windows. This flaw permits less-privileged local users to exploit race conditions through symbolic links, potentially enabling them to elevate their rights within the system. Users of versions prior to 27.0.58.315 for both Total Security and Internet Security are particularly at risk. It is crucial for users to promptly update their software to mitigate this security concern.

Affected Version(s)

Internet Security Windows 0 < 27.0.58.315

Total Security Windows 0 < 27.0.58.315

References

CVSS V4

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Anonymous working with TrendAI Zero Day Initiative
.