A null pointer dereference vulnerability in Macrium Reflect prior to 8.1.8017 allows a local attacker to cause a system crash or potentially elevate their privileges via executing a specially crafted executable.
https://updates.macrium.com/reflect/v8/v8.1.8017/details8.1.8017.htm