Lucene search
HistoryApr 11, 2023 - 9:15 p.m.
CVE-2023-28252
windows
log file
elevation
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.1%
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.19869
ORmicrosoftwindows_10_1607Range<10.0.14393.5850
ORmicrosoftwindows_10_1809Range<10.0.17763.4252
ORmicrosoftwindows_10_20h2Range<10.0.19042.2846
ORmicrosoftwindows_10_21h2Range<10.0.19044.2846
ORmicrosoftwindows_10_22h2Range<10.0.19045.2846
ORmicrosoftwindows_11_21h2Range<10.0.22000.1817
ORmicrosoftwindows_11_22h2Range<10.0.22621.1555
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2sp1x64
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2019Match-
ORmicrosoftwindows_server_2022Match-
Related
zdt
zdt
githubexploit
githubexploit
Exploit for Heap-based Buffer Overflow in Microsoft
2024-01-01 15:30:33
Exploit for Heap-based Buffer Overflow in Microsoft
2024-01-22 10:38:02
Exploit for Heap-based Buffer Overflow in Microsoft
2023-06-27 12:22:05
hivepro
hivepro
prion
prion
Privilege escalation
2023-04-11 21:15:00
metasploit
metasploit
attackerkb
attackerkb
CVE-2023-28252
2023-04-11 00:00:00
cve
cve
CVE-2023-28252
2023-04-11 21:15:25
mscve
mscve
Windows Common Log File System Driver Elevation of Privilege Vulnerability
2023-04-11 07:00:00
cisa_kev
cisa_kev
packetstorm
packetstorm
Windows Common Log File System Driver (clfs.sys) Privilege Escalation
2023-09-14 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
wizblog
wizblog
Microsoft April 2023 Patch Tuesday Highlights: everything you need to know
2023-04-13 19:20:20
securelist
securelist
IT threat evolution in Q2 2023
2023-08-30 10:00:05
Windows CLFS and five exploits used by ransomware operators (Exploit #5 β CVE-2023-28252)
2023-12-21 10:00:01
Nokoyawa ransomware attacks with Windows zero-day
2023-04-11 17:36:20
qualysblog
qualysblog
Combine Qualys TruRiskβ’ and MITRE ATT&CK to Adopt Threat-Informed Defense to Reduce Risk
2024-03-25 15:44:18
Qualys Survey of Top 10 Exploited Vulnerabilities in 2023
2023-09-26 13:04:00
2023 Threat Landscape Year in Review: If Everything Is Critical, Nothing Is
2023-12-19 15:00:00
thn
thn
Carbanak Banking Malware Resurfaces with New Ransomware Tactics
2023-12-26 07:26:00
talosblog
talosblog
avleonov
avleonov
malwarebytes
malwarebytes
Update now! Aprilβs Patch Tuesday includes a fix for one zero-day
2023-04-12 10:00:00
krebs
krebs
Microsoft (& Apple) Patch Tuesday, April 2023 Edition
2023-04-12 00:06:51
trellix
trellix
The Bug Report β April 2023 Edition
2023-05-03 00:00:00
The Bug Report β April 2023 Edition
2023-05-03 00:00:00
rapid7blog
rapid7blog
Metasploit 2023 Annual Wrap-Up: Dec. 29, 2023
2023-12-29 19:38:15
Metasploit Weekly Wrap-Up
2023-09-15 18:54:45
Patch Tuesday - April 2023
2023-04-11 22:49:56
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5025279)
2023-04-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5025221)
2023-04-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5025234)
2023-04-12 00:00:00
nessus
nessus
mskb
mskb
April 11, 2023βKB5025271 (Monthly Rollup)
2023-04-11 07:00:00
April 11, 2023βKB5025273 (Security-only update)
2023-04-11 07:00:00
April 11, 2023βKB5025234 (OS Build 10240.19869)
2023-04-11 07:00:00
kaspersky
kaspersky
KLA48842 Multiple vulnerabilities in Microsoft Products (ESU)
2023-04-11 00:00:00
KLA48845 Multiple vulnerabilities in Microsoft Windows
2023-04-11 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.1%
Related for NVD:CVE-2023-28252