CVE-2025-29824- Windows Common Log File System Driverに解放後使用(UAF: use-after-free)の脆弱性。認証された攻撃者は特権昇格の可能性がある(CVSSスコア: 7.8 ...

Microsoft on Tuesday released software updates to fix at least 70 vulnerabilities in Windows and related products, including five zero-day flaws that are already seeing active exploitation. Adding to ...

A joint investigation by the Microsoft Threat Intelligence Center and Microsoft Security Response Center found that a ...

Today is Microsoft's May 2025 Patch Tuesday, which includes security updates for 72 flaws, including five actively exploited ...

Multiple ransomware groups seen abusing Windows Common Log File System bug Among the abusers are RansomEXX and Play The bug ...

Microsoft patches at least 70 security bugs and flagged five zero-days in the “exploitation detected” category.

Cybercriminals are abusing a post-compromise zero-day vulnerability in the Windows Common Log File System (CLFS) to deploy ransomware. The Microsoft Threat Intelligence Center (MSTIC) and ...

With the large number of Common Log File System (CLFS) CVEs issued in the last few months, and the removal of the respective section in the latest Windows Internals, 7th Edition, Part 2 (not that it ...

The Play ransomware gang has exploited a high-severity Windows Common Log File System flaw in zero-day attacks to gain SYSTEM ...

Microsoft has released security updates to fix seven zero-day vulnerabilities, five of which are under active exploitation.

Microsoft said it observed a threat actor known as Storm-2460 abuse a use after free flaw in Windows Common Log File System Driver The flaw is used to deploy PipeMagic, which is then used to ...