CVE-2024-49138: Microsoft Windows Common Log File System (CLFS) Driver
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability. Microsoft Windows Common Log File System (CLFS) driver contains a heap-based buffer overflow vulnerability that allows a local attacker to escalate privileges.
- CISA KEV-listed (remediation due 2024-12-31)
- EPSS 86.9% (99.5% percentile)