CVE-2025-24984: Microsoft Windows NTFS Information Disclosure
Microsoft Windows NTFS Information Disclosure Vulnerability. Microsoft Windows New Technology File System (NTFS) contains an insertion of sensitive Information into log file vulnerability that allows an unauthorized attacker to disclose information with a physical attack. An attacker who successfully exploited this vulnerability could potentially read portions of heap memory.
- CISA KEV-listed (remediation due 2025-04-01)
- EPSS 4.3% (89.1% percentile)