Improper Link Resolution Vulnerability in Bitdefender Products
CVE-2026-6851
7HIGH
What is CVE-2026-6851?
An improper link resolution vulnerability exists in the File Shredder module utilized in Bitdefender Total Security and Internet Security on Windows. This flaw permits less-privileged local users to exploit race conditions through symbolic links, potentially enabling them to elevate their rights within the system. Users of versions prior to 27.0.58.315 for both Total Security and Internet Security are particularly at risk. It is crucial for users to promptly update their software to mitigate this security concern.
Affected Version(s)
Internet Security Windows 0 < 27.0.58.315
Total Security Windows 0 < 27.0.58.315
References
CVSS V4
Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Anonymous working with TrendAI Zero Day Initiative
