High severity7.8NVD Advisory· Published Feb 2, 2018· Updated Jun 17, 2026

CVE-2018-6525

Description

In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x220458.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

INCA Internet/nProtect AVSllm-fuzzy
Range: <4.0.0.39

Patches

Vulnerability mechanics

References

inca.co.kr/include_file/pdf_down/nProtect%20AVS%20V4%20Vulnerability%20Response%20Release%20Notes.pdfnvdVendor Advisory
github.com/ZhiyuanWang-Chengdu-Qihoo360/nProtectAntivirus_POC/tree/master/TKFsAv_0x220458nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000