CVE-2018-6524

Name of the Vulnerable Software and Affected Versions nProtect AVS V4.0 versions prior to 4.0.0.39

Description The issue allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because the driver file (TKFsAv.SYS) does not validate input values from IOCtl 0x220c20.

Recommendations For nProtect AVS V4.0 versions prior to 4.0.0.39, update to version 4.0.0.39 or later to resolve the issue.