Kaluche / Vulnerabilities and disclosures
Vulnerabilities and disclosures
Discovered vulnerabilities and public CVE records, including disclosures for which no CVE was assigned.
| CVE / status | Vendor / product | Component | Impact | Role | Disclosure |
|---|---|---|---|---|---|
| No CVE assigned | Intego / Intego Antivirus for Windows | Windows Optimizer / IavService.exe | arbitrary directory delete as SYSTEM, LPE to SYSTEM | discovered | Apr 07, 2026 |
| CVE-2026-27748 | Gen Digital / Avira / Avira Internet Security | Software Updater | arbitrary file delete as SYSTEM, LPE before Windows 24H2, system integrity compromise | discovered | Mar 03, 2026 |
| CVE-2026-27749 | Gen Digital / Avira / Avira Internet Security | System Speedup / RealTimeOptimizer | arbitrary code execution as SYSTEM, LPE | discovered | Mar 03, 2026 |
| CVE-2026-27750 | Gen Digital / Avira / Avira Internet Security | Optimizer | arbitrary folder delete as SYSTEM, LPE | discovered | Mar 03, 2026 |
| CVE-2025-67826 | K7 Computing / K7 Ultimate Security | K7TSMngrService1 named pipe / K7TSMngr.exe | antivirus tampering, arbitrary registry modification, LPE to SYSTEM | discovered | Dec 02, 2025 |