CVE-2025-62457
cldflt.sys — out-of-bounds read allows elevation of privilege
Summary
| Field | Value |
|---|---|
| Driver | cldflt.sys |
| Vulnerability Class | Out-of-Bounds Read |
| CVSS | 7.8 |
| Exploited ITW | No |
| Patch Date | December 9, 2025 |
Root Cause
The Cloud Files Mini Filter driver skips buffer boundary checks when processing reparse data, and an out-of-bounds read results. The OOB read leaks kernel memory or can be chained for privilege escalation.
Exploitation
The attacker crafts reparse data that triggers the OOB read. The leaked kernel data gives information disclosure or chains with other primitives for SYSTEM escalation.
Exploitation Primitive
Crafted reparse data → OOB read
→ information disclosure / corruption → SYSTEM