SSD Advisory – Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation

Summary A vulnerability exists in processing IRP_MJ_CREATE requests in driver clfs.sys. This occurs during the processing of blf files that are parsed in kernel. Credit An independent security researcher working with SSD Secure Disclosure. CVE CVE-2023-36424 Affected Versions Windows systems running 64-bit clfs.sys with version 10.0.22621.1555 Vendor Response The vendor has released a patch for …

SSD Advisory – Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation Read More »