CVE-2011-2005

afd.sys in the Ancillary Function Driver in Microsoft Windows does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application. Vendor/Product: Microsoft Ancillary Function Driver (afd.sys). Added to CISA KEV 2022-03-28; required action: Apply updates per vendor instructions.