Windows Common Log File System Driver
by Microsoft
CVEs (74)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-8167 | Hig | 0.46 | 7.0 | 0.01 | May 9, 2018 | An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka "Windows Common Log File System Driver Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT… | ||
| CVE-2024-30037 | Med | 0.36 | 5.5 | 0.05 | May 14, 2024 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | ||
| CVE-2023-36713 | Med | 0.36 | 5.5 | 0.08 | Oct 10, 2023 | Windows Common Log File System Driver Information Disclosure Vulnerability | ||
| CVE-2023-28266 | Med | 0.36 | 5.5 | 0.04 | Apr 11, 2023 | Windows Common Log File System Driver Information Disclosure Vulnerability | ||
| CVE-2022-23281 | Med | 0.36 | 5.5 | 0.01 | Mar 9, 2022 | Windows Common Log File System Driver Information Disclosure Vulnerability | ||
| CVE-2022-22710 | Med | 0.36 | 5.5 | 0.01 | Feb 9, 2022 | Windows Common Log File System Driver Denial of Service Vulnerability | ||
| CVE-2022-21998 | Med | 0.36 | 5.5 | 0.01 | Feb 9, 2022 | Windows Common Log File System Driver Information Disclosure Vulnerability | ||
| CVE-2021-43224 | Med | 0.36 | 5.5 | 0.04 | Dec 15, 2021 | Windows Common Log File System Driver Information Disclosure Vulnerability | ||
| CVE-2020-0658 | Med | 0.36 | 5.5 | 0.01 | Feb 11, 2020 | An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. | ||
| CVE-2020-0639 | Med | 0.36 | 5.5 | 0.01 | Jan 14, 2020 | An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0615. | ||
| CVE-2020-0615 | Med | 0.36 | 5.5 | 0.02 | Jan 14, 2020 | An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0639. | ||
| CVE-2019-1282 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2019 | An information disclosure exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle sandbox checks, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. | ||
| CVE-2016-7295 | Med | 0.36 | 5.5 | 0.03 | Dec 20, 2016 | The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain… | ||
| CVE-2025-62470 | 0.00 | — | 0.00 | Dec 9, 2025 | Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. |
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka "Windows Common Log File System Driver Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT…
- risk 0.36cvss 5.5epss 0.05
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- risk 0.36cvss 5.5epss 0.08
Windows Common Log File System Driver Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.04
Windows Common Log File System Driver Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows Common Log File System Driver Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows Common Log File System Driver Denial of Service Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows Common Log File System Driver Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.04
Windows Common Log File System Driver Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'.
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0615.
- risk 0.36cvss 5.5epss 0.02
An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0639.
- risk 0.36cvss 5.5epss 0.01
An information disclosure exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle sandbox checks, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'.
- risk 0.36cvss 5.5epss 0.03
The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain…
- CVE-2025-62470Dec 9, 2025risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
Page 4 of 4