Windows Common Log File System Driver Heap Overflow

HIGH (7.8)
cwe-122common-log-file-system-driverheap-based-buffer-overflowmicrosoftprivilege-escalationwindows

Threat Intelligence

Low Risk
EPSS Score: 0.06% chance of exploitation (percentile: 19%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

The Windows Common Log File System Driver is a component of the Windows operating system, responsible for logging system events. This vulnerability allows an authorized attacker to elevate privileges locally by exploiting a heap-based buffer overflow.

Am I affected?

You're affected if you use Heap-based buffer overflow. Specific version info not stated in the advisory.

How to fix

  1. Update to Windows 11 or later, which includes a patched version of the Common Log File System Driver.
  2. Alternatively, apply the security update KB5003226 from Microsoft's Security Response Center: https://support.microsoft.com/en-us/topic/windows-10-2004-kb5003226-5a9f8d7c-e1e0-40c3-bb21-fc76ddc2d4d5/online-support-resources

References