Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-84602
HistoryMar 10, 2022 - 12:00 a.m.

Microsoft Windows Common Log File System Driver Information Disclosure Vulnerability (CNVD-2022-84602)

2022-03-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
microsoft
windows
common log file system
driver
information disclosure
vulnerability
api
excessive data output
unauthorized access
sensitive information

EPSS

0.001

Percentile

25.2%

Microsoft Windows Common Log File System Driver is a Common Log File System (CLFS) API from Microsoft that provides a common log file subsystem that can be used by dedicated client applications and shared by multiple clients to optimize log access. An information disclosure vulnerability exists in the Microsoft Windows Common Log File System Driver. The vulnerability is due to excessive data output by applications in the Windows Common Log File System Driver. An attacker could use this vulnerability to gain unauthorized access to sensitive information on the system.