CVE-2025-29824

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
microsoftCNA
7.8 HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
CISA-ADPADP
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
microsoftwindows_10_1607
𝑥
< 10.0.14393.7970
microsoftwindows_10_1607
𝑥
< 10.0.14393.7970
microsoftwindows_10_1809
𝑥
< 10.0.17763.7137
microsoftwindows_10_1809
𝑥
< 10.0.17763.7137
microsoftwindows_10_21h2
𝑥
< 10.0.19044.5737
microsoftwindows_10_21h2
𝑥
< 10.0.19044.5737
microsoftwindows_10_21h2
𝑥
< 10.0.19044.5737
microsoftwindows_10_22h2
𝑥
< 10.0.19045.5737
microsoftwindows_10_22h2
𝑥
< 10.0.19045.5737
microsoftwindows_10_22h2
𝑥
< 10.0.19045.5737
microsoftwindows_11_22h2
𝑥
< 10.0.22621.5191
microsoftwindows_11_22h2
𝑥
< 10.0.22621.5191
microsoftwindows_11_22h2
𝑥
< 10.0.22631.5191
microsoftwindows_11_24h2
𝑥
< 10.0.26100.3775
microsoftwindows_11_24h2
𝑥
< 10.0.26100.3775
microsoftwindows_server_2008
𝑥
< 6.0.6003.23220
microsoftwindows_server_2008
𝑥
< 6.0.6003.23220
microsoftwindows_server_2008
𝑥
< 6.0.6003.23220
microsoftwindows_server_2012
𝑥
< 6.2.9200.25423
microsoftwindows_server_2016
𝑥
< 10.0.14393.7970
microsoftwindows_server_2019
𝑥
< 10.0.17763.7137
microsoftwindows_server_2022
𝑥
< 10.0.20348.3454
microsoftwindows_server_2022_23h2
𝑥
< 10.0.25398.1551
microsoftwindows_server_2025
𝑥
< 10.0.26100.3775
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29824
https://www.vicarius.io/vsociety/posts/cve-2025-29824-windows-common-log-file-system-driver-elevation-of-privilege-vulnerability-detection-script
https://www.vicarius.io/vsociety/posts/cve-2025-29824-windows-common-log-file-system-driver-elevation-of-privilege-vulnerability-mitigation-script