CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2021-38633 affects Windows CLFS driver (Common Log File System). Connected sources provide concrete technical detail: the vulnerability is a local privilege escalation in clfs.sys, related to CLFS container/file creation paths and privilege checks (e.g., CClfsBaseFilePersisted::CreateContaine...

7.8CVSS8AI score0.00832EPSS

In wildExploits0References1Affected Software9

Cvelist•added 2021/09/15 11:23 a.m.•35 views

CVE-2021-36963 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS8.3AI score0.00967EPSS

Exploits0References1

Vulnrichment•added 2021/09/15 11:23 a.m.•12 views

CVE-2021-36955 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.2AI score0.03054EPSS

Exploits0References1

CVE•added 2021/09/15 11:23 a.m.•1135 views

CVE-2021-36955

CVE-2021-36955 is a Windows privilege-escalation flaw in the Common Log File System (CLFS) driver. The vulnerability stems from the CLFS driver (clfs.sys) and enables local privilege escalation to SYSTEM when exploited. Connected guidance and threat intel cite this CVE alongside Windows CLFS-rela...

7.8CVSS8AI score0.03054EPSS

In wildExploits0References2Affected Software17

Cvelist•added 2021/09/15 11:23 a.m.•31 views

CVE-2021-36955 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS8.3AI score0.03054EPSS

Exploits0References1

ATTACKERKB•added 2021/09/15 12:0 a.m.•38 views

CVE-2021-38633

Windows Common Log File System Driver Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS7.5AI score0.00832EPSS

In wildExploits0References2

OSV•added 2021/09/14 10:21 a.m.•7 views

OPENSUSE-SU-2021:1255-1 Security update for nextcloud

This update for nextcloud fixes the following issues: Update to 20.0.12 Fix boo1190291 - CVE-2021-32766 CWE-209: Generation of Error Message Containing Sensitive Information - CVE-2021-32800 CWE-306: Missing Authentication for Critical Function - CVE-2021-32801 CWE-532: Insertion of Sensitive...

10CVSS9.7AI score0.02521EPSS

Exploits0References6

OSV•added 2021/09/14 9:33 a.m.•8 views

OPENSUSE-SU-2021:1252-1 Security update for nextcloud

This update for nextcloud fixes the following issues: Update to 20.0.12 Fixed security issues boo1190291: - CVE-2021-32766 CWE-209: Generation of Error Message Containing Sensitive Information - CVE-2021-32800 CWE-306: Missing Authentication for Critical Function - CVE-2021-32801 CWE-532: Inserti...

10CVSS9.8AI score0.02521EPSS

Exploits0References6