PT-2022-2241 · Microsoft · Windows Common Log File System Driver+1
Adam Podlosky
+1
·
Published
2022-04-12
·
Updated
2025-12-09
·
CVE-2022-24521
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Windows Common Log File System Driver (affected versions not specified)
Description
This issue is an elevation-of-privilege vulnerability affecting the Windows Common Log File System Driver. Successful exploitation could allow attackers to affect the system and potentially gain elevated privileges. The Vanilla Tempest cybercrime gang has been observed using this vulnerability in conjunction with INC ransomware. The vulnerability is related to errors in privilege management within the driver. It was reported by CrowdStrike and the NSA. Multiple sources indicate the vulnerability is being actively exploited by ransomware operators.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Windows
Windows Common Log File System Driver