CVE-2023-28252 - Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability

CVE-2023-28252: Microsoft | Windows

Date Added:
2023-04-11

Due Date:
2023-05-02

Vulnerability Name: Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability

Description: Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.

Known To Be Used in Ransomware Campaigns?: Known

Action: Apply updates per vendor instructions.

Additional Notes: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-28252; https://nvd.nist.gov/vuln/detail/CVE-2023-28252

Related News Articles

VMware ESXi Flaw Exploited by Ransomware Groups for Admin AccessJuly 30, 2024

Microsoft: Ransomware gangs exploit VMware ESXi auth bypass in attacksJuly 30, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard