An issue in TeraByte Unlimited Image for Windows v.3.64.0.0 and before and fixed in v.4.0.0.0 allows a local attacker to escalate privileges via the TBOFLHelper64.sys and TBOFLHelper.sys component.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.