CVE-2025-30038
27.08.2025, 11:15
The vulnerability consists of a session ID leak when saving a file downloaded from CGM CLININET. The identifier is exposed through a built-in Windows security feature that stores additional metadata in an NTFS alternate data stream (ADS) for all files downloaded from potentially untrusted sources.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.