Microsoft Windows Vulnerability Allows Privilege Escalation

🔑 Microsoft Windows vulnerability allows privilege escalation via Cloud Files Mini Filter Driver. A newly discovered vulnerability in Microsoft Windows enables local attackers to escalate privileges by exploiting a flaw in the Cloud Files Mini Filter Driver, which improperly validates user-supplied data lengths. To exploit this vulnerability, an attacker must first execute low-privileged code on the target system. The issue was demonstrated at the TyphoonPWN 2024 event, where it secured third place. Microsoft has released a patch to address this vulnerability, identified as CVE-2024-30085, affecting Windows 11 23H2 installations. For further details, users can refer to the official Microsoft update guide.

Source

Original