4568 matches found
CVE-2025-26795
CVE-2025-26795 affects Apache IoTDB JDBC driver (iotdb-jdbc) versions 0.10.0–1.3.3 and 2.0.1-beta before 2.0.2. Root cause: insertion of sensitive information into log files, leading to exposure to unauthorized actors. Impact is High confidentiality (C:H, I/N/A:N). Affected component is iotdb-jdb...
CVE-2025-26795 Apache IoTDB JDBC driver: Exposure of Sensitive Information in IoTDB JDBC driver
Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in Apache IoTDB JDBC driver. This issue affects iotdb-jdbc: from 0.10.0 through 1.3.3, from 2.0.1-beta before 2.0.2. Users are recommended to upgrade to version 2.0.2 and...
Exploit for Use After Free in Microsoft
🔥 CVE-2025-29824 Zero-Day Exploit 🔥 Welcome to the dark heart...
Apache IoTDB JDBC driver 日志信息泄露漏洞
The Apache IoTDB JDBC driver is a standard JDBC driver for the Apache IoTDB database from the Apache USA Foundation that supports Java applications interacting with IoTDB. A log information disclosure vulnerability exists in Apache IoTDB JDBC driver versions 0.10.0 through 1.3.3 and versions prio...
The vulnerability of the Windows Common Log File System Driver in the Windows operating system allows a hacker to gain increased privileges.
The vulnerability of the Windows Common Log File System Driver in the operating system is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Common Log File System (CLFS) driver in Windows operating systems allows a hacker to elevate their privileges to the SYSTEM level.
The vulnerability of the Windows Common Log File System CLFS driver in Windows operating systems is related to deficiencies in the mechanism for checking input data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...
PT-2025-21136 · Apache · Iotdb-Jdbc
Name of the Vulnerable Software and Affected Versions: iotdb-jdbc versions 0.10.0 through 1.3.3 iotdb-jdbc versions 2.0.1-beta through 2.0.2 Description: The issue is related to the exposure of sensitive information to an unauthorized actor and the insertion of sensitive information into log file...
CVE-2025-32706
Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...
CVE-2025-32701
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...
CVE-2025-30385
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...
CVE-2025-30385
Technical details about CVE-2025-30385 are not provided in the connected documents. The initial description mentions a Windows use-after-free in the CLFS driver that could elevate privileges, but no vendor/version specifics or fixes are disclosed here. Monitor for authoritative updates.
CVE-2025-30385 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CVE-2025-30385 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CVE-2025-32706 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CVE-2025-32706 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CVE-2025-32706
CVE-2025-32706 is an elevation-of-privilege flaw in Windows CLFS Driver (heap-based buffer overflow) that enables local privilege escalation. Affected product: Windows Common Log File System Driver. Base CVSS v3.1: 7.8 (HIGH); attack vector LOCAL, requires LOW privileges, no user interaction. Pub...
CVE-2025-32701 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CVE-2025-32701
CVE-2025-32701 is a Windows CLFS driver use-after-free vulnerability that can allow an authorized attacker to elevate privileges locally. The weakness affects the Windows Common Log File System Driver and has a base CVSS v3.1 score of 7.8 (HIGH) with LOCAL attack vector, LOW attack complexity, an...
CVE-2025-32701 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-30400link is external Microsoft Windows DWM Core Library Use-After-Free Vulnerability CVE-2025-32701link is external Microsoft Windows Common Log File System...