An Improper link resolution before file access ('link following') vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links.
This issue affects Total Security: before 27.0.58.315; Internet Security: before 27.0.58.315.
Metrics
Affected Vendors & Products
References
History
Tue, 14 Jul 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 14 Jul 2026 09:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Bitdefender
Bitdefender internet Security Bitdefender total Security |
|
| Vendors & Products |
Bitdefender
Bitdefender internet Security Bitdefender total Security |
Tue, 14 Jul 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An Improper link resolution before file access ('link following') vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue affects Total Security: before 27.0.58.315; Internet Security: before 27.0.58.315. | |
| Title | Improper link resolution before file access in Bitdefender Total Security via Link Following (VA-13681) | |
| Weaknesses | CWE-59 | |
| References |
| |
| Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: Bitdefender
Published:
Updated: 2026-07-14T12:36:53.635Z
Reserved: 2026-04-22T10:06:58.221Z
Link: CVE-2026-6851
Updated: 2026-07-14T12:34:43.522Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-14T09:30:09Z