Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Exploit for Out-of-bounds Write in Microsoft

🗓️ 09 Mar 2023 21:17:44Reported by fortraType 
githubexploit
 githubexploit🔗 github.com👁 574 Views

Exploit for Out-of-bounds Write in Microsoft Windows Local Privilege Escalation PoC. Functional PoC for CVE-2022-37969. Complete exploit works on vulnerable Windows 11 21H2 systems. Creating initial BLF log file, crafting log files, controlled Heap Spray, SYSTEM token manipulation, local privilege escalation

Related
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2022-37969
13 Sep 202200:00
attackerkb
Information Security Automation		Microsoft Patch Tuesday September 2022: CLFS Driver EoP, IP packet causes RCE, Windows DNS Server DoS, Spectre-BHB
23 Sep 202222:44
avleonov
GithubExploit		Exploit for Out-of-bounds Write in Microsoft
27 Jun 202312:22
githubexploit
GithubExploit		Exploit for Out-of-bounds Write in Microsoft
27 Jun 202312:22
githubexploit
GithubExploit		Exploit for CVE-2024-6768
18 Jul 202407:52
githubexploit
GithubExploit		Exploit for Out-of-bounds Write in Microsoft
25 Nov 202510:36
githubexploit
BDU FSTEC		The vulnerability of the file system driver of Windows operating systems allows a hacker to execute arbitrary code with system privileges.
16 Sep 202200:00
bdu_fstec
Circl		CVE-2022-37969
13 Sep 202221:31
circl
CISA KEV Catalog		Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
14 Sep 202200:00
cisa_kev
CNNVD		Microsoft Windows Common Log File System Driver 缓冲区错误漏洞
13 Sep 202200:00
cnnvd
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
16 Jul 2025 07:20Current
8.7High risk
Vulners AI Score8.7
CVSS 3.17.8
EPSS0.28483
microsoftwindowscve-2022-37969privilege escalationexploitsecuritylocalsystem tokenvulnerabilitywindows 11out-of-bounds write
574