|CVSS SCORE||6.9, (AV:L/AC:M/Au:N/C:C/I:C/A:C)|
The specific flaw exists within the secdrv.sys driver. The issue lies in the failure to initialize a buffer prior to using it. An attacker can leverage this vulnerability to achieve code execution at SYSTEM.
Microsoft has issued an update to correct this vulnerability. More details can be found at: