Last update: February 19, 2023 Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code The product defines an IOCTL that uses METHOD_NEITHER for I/O, but it does not validate or incorrectly validates the addresses that are provided.