8 matches found
CVE-2026-50381
Access of resource using incompatible type 'type confusion' in Composite Image File System Driver allows an authorized attacker to disclose information locally...
CVE-2026-50381 Composite Image File System driver (cimfs.sys) Information Disclosure Vulnerability
...
CVE-2026-50381
The CVE-2026-50381 entry concerns the Windows Composite Image File System driver (cimfs.sys). A type confusion in this component can lead to local information disclosure by an authenticated user with low privileges (local access, no user interaction required). The CVSS 3.1 base score is 5.5 (Conf...
CVE-2026-50381 Composite Image File System driver (cimfs.sys) Information Disclosure Vulnerability
...
CVE-2024-26170 Windows Composite Image File System (CimFS) Elevation of Privilege Vulnerability
...
Microsoft Windows Composite Image File System security vulnerability
Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A security vulnerability exists in the Microsoft Windows Composite Image File System. The following products and versions are affected: Windows Server 2022,Windows Server 2022 Server Core...
PT-2024-2250 · Microsoft · Windows Composite Image File System +1
Name of the Vulnerable Software and Affected Versions: Windows Composite Image File System CimFS affected versions not specified Description: The issue is related to insufficient access restrictions in the Windows Composite Image File System CimFS component, which can be exploited to elevate...
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc in NTFS-3G through 2021.8.22.
...