CVE-2025-60709
clfs.sys — out-of-bounds read allows elevation of privilege
Summary
| Field | Value |
|---|---|
| Driver | clfs.sys |
| Vulnerability Class | Out-of-Bounds Read |
| CVSS | 7.8 |
| Exploited ITW | No |
| Patch Date | November 11, 2025 |
Root Cause
The CLFS driver skips offset validation when reading log file metadata. An out-of-bounds read leaks kernel memory or can be chained with other primitives for privilege escalation.
Exploitation
The attacker crafts a CLFS log file with malformed metadata offsets. When processed, the driver reads past buffer boundaries, giving information disclosure or a corruption primitive.
Exploitation Primitive
Crafted CLFS log file → OOB read
→ information disclosure / corruption primitive → SYSTEM