1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability

Known Exploited Vulnerabilities CVE-2025-32701

Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2025-32701 Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability exploitation_technique T1068 Exploitation for Privilege Escalation
Comments
This zero-day vulnerability has been exploited by attackers to gain SYSTEM-level privileges in Windows, leading to remote code execution, as well as the ability to disable security tools, deploy malicious payloads, and extract credentials from memory.
References
  1. https://www.darkreading.com/vulnerabilities-threats/windows-zero-day-bug-exploited-browser-rce
CVE-2025-32701 Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability exploitation_technique T1059 Command and Scripting Interpreter
Comments
This zero-day vulnerability has been exploited by attackers to gain SYSTEM-level privileges in Windows, leading to remote code execution, as well as the ability to disable security tools, deploy malicious payloads, and extract credentials from memory.
References
  1. https://www.darkreading.com/vulnerabilities-threats/windows-zero-day-bug-exploited-browser-rce
CVE-2025-32701 Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability primary_impact T1543 Create or Modify System Process
Comments
This zero-day vulnerability has been exploited by attackers to gain SYSTEM-level privileges in Windows, leading to remote code execution, as well as the ability to disable security tools, deploy malicious payloads, and extract credentials from memory.
References
  1. https://www.darkreading.com/vulnerabilities-threats/windows-zero-day-bug-exploited-browser-rce
CVE-2025-32701 Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability primary_impact T1003.001 LSASS Memory
Comments
This zero-day vulnerability has been exploited by attackers to gain SYSTEM-level privileges in Windows, leading to remote code execution, as well as the ability to disable security tools, deploy malicious payloads, and extract credentials from memory.
References
  1. https://www.darkreading.com/vulnerabilities-threats/windows-zero-day-bug-exploited-browser-rce
CVE-2025-32701 Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability primary_impact T1608.001 Upload Malware
Comments
This zero-day vulnerability has been exploited by attackers to gain SYSTEM-level privileges in Windows, leading to remote code execution, as well as the ability to disable security tools, deploy malicious payloads, and extract credentials from memory.
References
  1. https://www.darkreading.com/vulnerabilities-threats/windows-zero-day-bug-exploited-browser-rce