Lucene search
+L

10 matches found

Exploit DB
Exploit DB
added 2025/04/22 12:0 a.m.273 views

Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege

Exploit Title: Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege Date: 2025-04-16 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL MiRROR-H: https://mirror-h.org/search/hacker/49626/ CVE: CVE-2024-49138 include...

7.8CVSS7.4AI score0.25414EPSS
Exploits4
Information Security Automation
Information Security Automation
added 2025/01/16 11:46 a.m.26 views

The Elevation of Privilege – Windows Common Log File System Driver (CVE-2024-49138) has become more critical

The Elevation of Privilege - Windows Common Log File System Driver CVE-2024-49138 has become more critical. Just as I wrote that nothing had been heard about this vulnerability for a month since it was first published in Microsoft's December Patch Tuesday, a public exploit for it appeared on...

7.8CVSS7.3AI score0.25414EPSS
Exploits4
Information Security Automation
Information Security Automation
added 2025/01/15 9:29 a.m.22 views

What has become known about the Elevation of Privilege – Windows Common Log File System Driver (CVE-2024-49138) vulnerability from the December Microsoft Patch Tuesday a month later?

What has become known about the Elevation of Privilege - Windows Common Log File System Driver CVE-2024-49138 vulnerability from the December Microsoft Patch Tuesdaya month later? Almost nothing. This is a vulnerability in a standard Windows component, available in all versions starting with...

7.8CVSS7.2AI score0.25414EPSS
Exploits4
GithubExploit
GithubExploit
added 2025/01/15 12:43 a.m.356 views

Exploit for Heap-based Buffer Overflow in Microsoft

CVE-2024-49138-POC Proof of Concept that exploits CVE-2024-4...

7.8CVSS8.9AI score0.25414EPSS
Exploits4
ATTACKERKB
ATTACKERKB
added 2024/12/12 12:0 a.m.47 views

CVE-2024-49138

Windows Common Log File System Driver Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS6.8AI score0.25414EPSS
In wildExploits4References2
The Hacker News
The Hacker News
added 2024/12/11 7:16 a.m.20 views

Microsoft Fixes 72 Flaws, Including Patch for Actively Exploited CLFS Vulnerability

Microsoft closed out its Patch Tuesday updates for 2024 with fixes for a total of 72 security flaws spanning its software portfolio, including one that it said has been exploited in the wild. Of the 72 flaws, 17 are rated Critical, 54 are rated Important, and one is rated Moderate in severity...

9.8CVSS9.9AI score0.70906EPSS
Exploits21
Rapid7 Blog
Rapid7 Blog
added 2024/12/10 10:15 p.m.7 views

Patch Tuesday - December 2024

Microsoft is addressing 70 vulnerabilities this December 2024 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation and public disclosure for one of the vulnerabilities published today, and this is reflected in a CISA KEV entry. For the third month in a row, Microsoft has published...

9.8CVSS8.2AI score0.70906EPSS
Exploits7
Cvelist
Cvelist
added 2024/12/10 5:49 p.m.80 views

CVE-2024-49138 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS0.25414EPSS
Exploits4References1
CVE
CVE
added 2024/12/10 5:49 p.m.516 views

CVE-2024-49138

Summary (CVE-2024-49138): A heap-based buffer overflow in the Windows Common Log File System Driver (CLFS.sys) enables local Elevation of Privilege on Windows 11/23h2 (and other supported builds). Public PoCs and exploits exist (GitHub PoC repos and exploits referenced in multiple sources), with ...

7.8CVSS7.5AI score0.25414EPSS
In wildExploits4References4Affected Software15
Circl
Circl
added 2024/12/10 5:33 p.m.12 views

CVE-2024-49138

creationtimestamp| type| source ---|---|--- 2024-12-10 17:33:56+00:00| seen| https://www.thezdi.com/blog/2024/12/10/the-december-2024-security-update-review 2024-12-10 17:58:30+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113629823630772527 2024-12-10 19:22:31+00:00| seen|...

7.8CVSS7.1AI score0.25414EPSS
Exploits4References56
Rows per page
Query Builder