Lucene search
K

13 matches found

Securelist
Securelist
added 2023/12/21 10:0 a.m.62 views

Windows CLFS and five exploits used by ransomware operators (Exploit #3 – October 2022)

This is part four of our study about the Common Log File System CLFS and five vulnerabilities in this Windows OS component that have been used in ransomware attacks throughout the year. Please read the previous parts first if you havent already. You can skip to the other parts using this table of...

4.6CVSS7.6AI score0.48973EPSS
Exploits14
Securelist
Securelist
added 2023/12/21 10:0 a.m.66 views

Windows CLFS and five exploits used by ransomware operators (Exploit #2 – September 2022)

This is the third part of our study about the Common Log File System CLFS and five vulnerabilities in this Windows OS component that have been used in ransomware attacks throughout the year. Please read the previous parts first if you havent already. You can skip to the other parts using this tab...

4.6CVSS8.1AI score0.48973EPSS
Exploits14
Securelist
Securelist
added 2023/12/21 10:0 a.m.68 views

Windows CLFS and five exploits used by ransomware operators

In April 2023, we published a blog post about a zero-day exploit we discovered in ransomware attacks that was patched as CVE-2023-28252 after we promptly reported it to Microsoft. In that blog post, we mentioned that the zero-day exploit we discovered was very similar to other Microsoft Windows...

7.2CVSS7.5AI score0.48973EPSS
Exploits14
GithubExploit
GithubExploit
added 2023/03/09 9:17 p.m.628 views

Exploit for Out-of-bounds Write in Microsoft

CVE-2022-37969 Windows Local Privilege Escalation PoC authors...

7.8CVSS8.7AI score0.28483EPSS
Exploits5
The Hacker News
The Hacker News
added 2022/10/14 5:34 p.m.82 views

Researchers Reveal Detail for Windows Zero-Day Vulnerability Patched Last Month

Details have emerged about a now-patched security flaw in Windows Common Log File System CLFS that could be exploited by an attacker to gain elevated permissions on compromised machines. Tracked as CVE-2022-37969 CVSS score: 7.8, the issue was addressed by Microsoft as part of its Patch Tuesday...

7.8CVSS0.2AI score0.28483EPSS
Exploits5
The Hacker News
The Hacker News
added 2022/09/14 4:42 a.m.87 views

Microsoft's Latest Security Update Fixes 64 New Flaws, Including a Zero-Day

Tech giant Microsoft on Tuesday shipped fixes to quash 64 new security flaws across its software lineup, including one zero-day flaw that has been actively exploited in real-world attacks. Of the 64 bugs, five are rated Critical, 57 are rated Important, one is rated Moderate, and one is rated Low...

9.8CVSS0.4AI score0.75711EPSS
Exploits9
Krebs on Security
Krebs on Security
added 2022/09/14 12:23 a.m.81 views

Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday

This months Patch Tuesday offers a little something for everyone, including security updates for a zero-day flaw in Microsoft Windows that is under active attack, and another Windows weakness experts say could be used to power a fast-spreading computer worm. Also, Apple has also quashed a pair of...

5CVSS1AI score0.75711EPSS
Exploits9
Circl
Circl
added 2022/09/13 9:31 p.m.19 views

CVE-2022-37969

creationtimestamp| type| source ---|---|--- 2022-09-13 21:31:54+00:00| exploited| https://t.me/ctinow/63371 2022-09-13 22:25:40+00:00| seen| https://t.me/cibsecurity/49681 2022-09-14 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=870 2022-09-14 12:37:36+00:00| seen|...

7.8CVSS7.4AI score0.28483EPSS
Exploits5References28
Rapid7 Blog
Rapid7 Blog
added 2022/09/13 8:11 p.m.283 views

Patch Tuesday - September 2022

This month’s Patch Tuesday is on the lighter side, with 79 CVEs being fixed by Microsoft including 16 CVEs affecting Chromium, used by their Edge browser, that were already available. One zero-day was announced: CVE-2022-37969 is an elevation of privilege vulnerability affecting the Log File Syst...

1.9CVSS1.1AI score0.85762EPSS
Exploits14
NVD
NVD
added 2022/09/13 7:15 p.m.30 views

CVE-2022-37969

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

7.8CVSS0.28483EPSS
Exploits5References2
CVE
CVE
added 2022/09/13 6:42 p.m.917 views

CVE-2022-37969

CVE-2022-37969 is a local privilege escalation in Windows CLFS (clfs.sys). The provided connected exploit discussion describes an out-of-bounds/memory-spraying chain that corrupts CLFS kernel structures (notably pContainer in a CLFS container) via crafted .blf files and memory spraying, enabling ...

7.8CVSS8.9AI score0.28483EPSS
In wildExploits5References2Affected Software15
Talos Blog
Talos Blog
added 2022/09/13 6:1 p.m.73 views

Microsoft Patch Tuesday for September 2022 — Snort rules and prominent vulnerabilities

By Jon Munshaw and Asheer Malhotra. Microsoft released its monthly security update Tuesday, disclosing 64 vulnerabilities across the company’s hardware and software line, a sharp decline from the record number of issues Microsoft disclosed last month. September's security update features five...

0.5AI score0.75711EPSS
Exploits7
VulnCheck KEV
VulnCheck KEV
added 2022/09/13 12:0 a.m.8 views

VulnCheck KEV: CVE-2022-37969

Microsoft Windows Common Log File System CLFS driver contains an unspecified vulnerability that allows for privilege escalation...

7.8CVSS7.3AI score0.28483EPSS
Exploits5References1
Rows per page
Query Builder