CVE-2011-2005
Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
31.8%
p98
KEV
YES
Mar 28, 2022
Exploit Today
79
0-100
Published: — · Last modified: —
Product
Microsoft / Ancillary Function Driver (afd.sys)
Vulnerability
Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability
Added to KEV
Mar 28, 2022
Remediate by
Apr 18, 2022
Known ransomware use
No
Summary description
afd.sys in the Ancillary Function Driver in Microsoft Windows does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2011-2005
No related CVEs by CWE or product.