AI description
CVE-2025-29824 is a use-after-free vulnerability in the Windows Common Log File System (CLFS) driver. Successful exploitation of this vulnerability allows an attacker to elevate their privileges to SYSTEM, meaning they can gain complete control over the affected system. This vulnerability has been exploited in the wild as a zero-day, meaning attackers were actively using it before a patch was available. It has been associated with ransomware attacks, where attackers use the elevated privileges to deploy ransomware. The vulnerability was addressed in Microsoft's April 2025 Patch Tuesday update.
- Description
- Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
- Source
- secure@microsoft.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
- Exploit added on
- Apr 8, 2025
- Exploit action due
- Apr 29, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- secure@microsoft.com
- CWE-416
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
Actively exploited CVE : CVE-2025-29824
@transilienceai
20 Apr 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Your bank’s “security strategy”? Hope, duct tape, and a prayer. 🙃 Meanwhile, Storm-2460 is out here doing magic tricks with #PipeMagic and CVE-2025-29824. 🎩 You patchin’, or just manifesting safety? Read the blog 👉 https://t.co/x5v1vegasf #AlphaHunt #AskYourTIP
@alphahunt_io
19 Apr 2025
12 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
19 Apr 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
18 Apr 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
18 Apr 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
2. Windows CLFS Zero Day Açığı (CVE-2025-29824) Microsoft, Windows Common Log File System (CLFS) sürücüsünde tespit edilen ve aktif olarak istismar edilen bir sıfır gün güvenlik açığını (CVE-2025-29824) gidermek için bir yama yayınladı. Bu açık, saldırganların sistem
@MuratDemirtas
18 Apr 2025
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
17 Apr 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
16 Apr 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Windows zero-day (CVE-2025-29824) hit by ransomware! Patched, but are you safe? Share tips! #Cybersecurity #OSINT #Ransomware https://t.co/HJdG6QtPov
@security_nest
16 Apr 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
16 Apr 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Threat Alert: PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware CVE-2025-29824 CVE-2025-24983 CVE-2023-28252 Severity: ⚠️ Critical Maturity: 💢 Emerging Learn more: https://t.co/zGwGbSy81X #CyberSecurity #ThreatIntel #InfoSec
@fletch_ai
16 Apr 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
15 Apr 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 New Windows zero-day (CVE-2025-29824) exploited in ransomware attacks! ⚡ Attackers used PipeMagic malware, hidden in MSBuild files, and hijacked legit sites to spread payloads. Linked to RansomEXX gang. 🔒 Patch ASAP if you haven't! https://t.co/P6VRAkXrIU
@achi_tech
15 Apr 2025
31 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
15 Apr 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
1. Microsoft Windows CLFS Sıfır Gün Açığı (CVE-2025-29824) Microsoft, Windows Common Log File System (CLFS) sürücüsünde tespit edilen ve aktif olarak istismar edilen bir sıfır gün güvenlik açığını (CVE-2025-29824) gidermek için bir yama yayınladı. Bu açık, saldırganların sistem
@MuratDemirtas
15 Apr 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
15 Apr 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Microsoft's latest patch addresses 125 Windows vulnerabilities, including the critical CLFS zero-day (CVE-2025-29824) under active exploitation. Stay updated and secure! 🔐 #CyberSecurity #Microsoft #ZeroDay https://t.co/wtV5HSwcoT
@Empist
14 Apr 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
14 Apr 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
13 Apr 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Microsoft Windows, Exploitation de la faille de Sécurité CVE-2025-29824 dans CLFS (Common Log File System) https://t.co/xSaoRICEpx
@NicolasCoolman
13 Apr 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
12 Apr 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Windows’ta Kritik Güvenlik Açığı: CVE-2025-29824 Saldırı Altında! Güncellemeleri Hemen Yükleyin https://t.co/zpmHvSuJYa https://t.co/c3S1iznwhc
@cozumpark
12 Apr 2025
245 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
12 Apr 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Critical zero-day vulnerability CVE-2025-29824 in Windows CLFS exploited by Storm-2460 using PipeMagic malware, impacting sectors globally. Urgent patch released on April 8, 2025. ⚠️ #Microsoft #Venezuela #MalwareThreats link: https://t.co/d2JXAt013I https://t.co/wpbhlps5gr
@TweetThreatNews
12 Apr 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Microsoft has rolled out a crucial security update for 126 vulnerabilities affecting Windows, Office, and Azure. Notably, CVE-2025-29824 is actively exploited. Stay secure! 🔒 #Microsoft #Vulnerabilities #USA link: https://t.co/MwdPjkVyUi https://t.co/wMpVfFsTPU
@TweetThreatNews
12 Apr 2025
37 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 #AlerteCyber : Microsoft confirme une faille #ZeroDay active (CVE-2025-29824) sur #Windows10/11 ! 🔓 Exploitée par RansomEXX pour installer des #ransomwares 🛡️ Correctifs : Win11 : KB5055523/28 URGENT Win10 : KB5055518 (+ patch à venir) 📅 Patché le 09/04 mais exploité depuis
@wowo_lamah
12 Apr 2025
106 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
11 Apr 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Microsoft’s April 2025 Patch Tuesday Addresses 121 CVEs (CVE-2025-29824) https://t.co/6EwECrRjbO https://t.co/cT8ctBj8Gw
@dansantanna
11 Apr 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
11 Apr 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CVE-2025-29824 Zero Day PipeMagic Detection.kql https://t.co/W4p7JVt0Nz https://t.co/OQEV0rewSw https://t.co/kbutTfGvDT
@0x534c
11 Apr 2025
2606 Impressions
10 Retweets
50 Likes
26 Bookmarks
1 Reply
0 Quotes
From Exploit to Ransomware: Detecting CVE-2025-29824 https://t.co/DD8ooLY3kl The Microsoft Security blog highlights the active exploitation of CVE-2025-24983, a zero-day vulnerability in the Windows Common Log File System (CLFS) that allows local privilege escalation to SYSTE…
@f1tym1
11 Apr 2025
25 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
윈도우 취약점 CVE-2025-29824을 악용한 랜섬웨어 공격 주의 https://t.co/7I2oJ9uulu #랜섬웨어 #취약점 #ransomeware
@sakaijjang
11 Apr 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
We added Microsoft Windows and Gladinet CentreStack vulnerabilities CVE-2025-29824 & CVE-2025-30406 to our Known Exploited Vulnerabilities Catalog. mitigations to protect your org from cyberattacks. #InfoSec https://t.co/e4qh8xysog
@GlobalCyberCom
10 Apr 2025
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ALERTĂ DE SECURITATE: Vulnerabilitate critică zero-day în Windows. CVE-2025-29824, exploatată activ de grupări cibernetice - https://t.co/DjcSxua8ze https://t.co/CfDWvmZBiX
@InsiderNews_ro
10 Apr 2025
20 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CISA Issues New Vulnerability Alert — CVE-2025-29824 Actively Exploited The Cybersecurity and Infrastructure Security Agency (@CISAgov) has added CVE-2025-29824 to its Known Exploited Vulnerabilities Catalog, highlighting a critical threat targeting the Windows Common Log File
@ExploitCritical
10 Apr 2025
54 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
The Windows CLFS zero-day exploit (CVE-2025-29824) was a security flaw hackers used to hijack PCs with ransomware It exploited a weak log file system to grab 'SYSTEM' access Globally, firms in the US, Venezuela, Spain, and Saudi Arabia got hit, losing data and facing chaos http
@CryptoFriso
10 Apr 2025
211 Impressions
0 Retweets
1 Like
0 Bookmarks
2 Replies
0 Quotes
🚨 Alertă – Vulnerabilitate critică de securitate cibernetică identificată la nivelul Microsoft Windows (CVE-2025-29824) 🚨 🔎 Vulnerabilitate critică exploatată activ în aprilie 2025 Microsoft a publicat patch-ul de securitate „Patch Tuesday” care remediază peste 120 de https:/
@DNSC_RO
10 Apr 2025
99 Impressions
1 Retweet
1 Like
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
10 Apr 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 مايكروسوفت تؤكد استغلال ثغرة يوم الصفر في Windows CLFS (CVE-2025-29824) لتنفيذ هجمات فدية استهدفت قطاع التجزئة في 🇸🇦 السعودية عبر برمجية PipeMagic. التحديثات الأمنية متوفرة الآن. 📌 التفاصيل عبر سايبركاست: ادناه https://t.co/QPuVrQubJg
@cyberscastx
10 Apr 2025
2841 Impressions
5 Retweets
18 Likes
11 Bookmarks
1 Reply
0 Quotes
Storm-2460's #PipeMagic turns banks into open vaults. Still relying on '90s security? #Patch CVE-2025-29824 now or pay later. 🏦🔓 https://t.co/x5v1vefCCH #AlphaHunt #AskYourTIP #CyberSecurity #CTI
@alphahunt_io
10 Apr 2025
3 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 ثغرة أمنية خطيرة في نظام تسجيل ملفات ويندوز تهدد القطاعات الحيوية! CVE-2025-29824 تتيح للمهاجمين تصعيد الامتيازات. القطاعات المستهدفة: تكنولوجيا المعلومات، القطاع المالي، البرمجيات، التجزئة. للمزيد: https://t.co/CB21fdkNZw 🛡️ #الأمن_السيبراني #مايكروسوفت #برامج_الفدية
@CYBRAT_NET
10 Apr 2025
46 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Microsoft’s April 2025 Patch Tuesday: 126 fixes, 1 zero-day (CVE-2025-29824) live in the wild, ransomware vibes from Storm-2460. EoP & RCE bugs galore. Update ASAP—full scoop here: https://t.co/rUb6vm2jax #MicrosoftForms #cybersecurite
@MehtaUnfiltered
10 Apr 2025
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
This week's major security updates: Microsoft fixed 120+ bugs incl. a zero-day (CVE-2025-29824), Adobe fixed critical ColdFusion & other app issues, and beware of malicious SourceForge downloads. #securityupdates
@CyberWatch_News
10 Apr 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Microsoft’s April 2025 Patch Tuesday Addresses 121 CVEs (CVE-2025-29824) https://t.co/6oPIQv4dfh https://t.co/7t0jl7SLCZ
@NickBla41002745
10 Apr 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ثغرة Zero Day جديدة تهز نظام Windows وتستغل فعلياً في هجمات فدية! 💣🛡️ (1/7) 🔍 اسم الثغرة: CVE-2025-29824 المكان: نظام CLFS في Windows التهديد: يُمكن للمهاجمين استغلالها لرفع الصلاحيات، والسيطرة الكاملة على النظام 💻⚠️ #سايبر #الأمن_السيبراني #Windows #ثغرات #CyberSecurity http
@CyberTask
10 Apr 2025
5945 Impressions
10 Retweets
89 Likes
43 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-29824
@transilienceai
10 Apr 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
米国サイバーセキュリティ・社会基盤安全保障庁(CISA)の既知の悪用された脆弱性カタログで、Windows CLFSドライバの脆弱性CVE-2025-29824と、CrushFTPの脆弱性CVE-2025-31161がランサムウェアに悪用されたことが確認された。 https://t.co/yygT1Uwj2s
@__kokumoto
9 Apr 2025
925 Impressions
0 Retweets
6 Likes
2 Bookmarks
3 Replies
0 Quotes
Microsoft released crucial Patch Tuesday updates, fixing multiple vulnerabilities, including critical flaws and a zero-day (CVE-2025-29824) in the CLFS driver, alongside critical RDP 🖥️ and LDAP 🌐 issues. Update now to stay safe! 🔒 #MicrosoftPatchTuesday #SecurityUpdate https:
@CyberWolfGuard
9 Apr 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
We erroneously posted that no patches were available for Windows 10 for the CVE-2025-29824 flaw based on this in Microsoft's advisory: "The security update for Windows 10 for x64-based Systems and Windows 10 for 32-bit Systems are not immediately available." The patches are
@BleepinComputer
9 Apr 2025
6468 Impressions
14 Retweets
36 Likes
3 Bookmarks
3 Replies
0 Quotes
Microsoft’s April 2025 Patch Tuesday Addresses 121 CVEs (CVE-2025-29824) https://t.co/D7PP349O9H https://t.co/ii6Fh6qCF4
@secured_cyber
9 Apr 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x32:*",
"vulnerable": true,
"matchCriteriaId": "205BF51D-7798-4E52-80C4-D5A72A8F1D12",
"versionEndExcluding": "10.0.14393.7970"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "2326BC98-7CE6-4FCD-8FF3-9E385465BE69",
"versionEndExcluding": "10.0.14393.7970"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x32:*",
"vulnerable": true,
"matchCriteriaId": "7014722D-3D72-4B1D-9859-9A34E09ED1C4",
"versionEndExcluding": "10.0.17763.7137"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "C23A8F41-3E3B-4783-B584-04893DD60763",
"versionEndExcluding": "10.0.17763.7137"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:arm64:*",
"vulnerable": true,
"matchCriteriaId": "83B3306F-C4EE-45A6-8139-6FAFC46DC696",
"versionEndExcluding": "10.0.19044.5737"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x32:*",
"vulnerable": true,
"matchCriteriaId": "E23DEC4B-7790-4DF2-9B77-20775AD0B34F",
"versionEndExcluding": "10.0.19044.5737"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "EDE77D74-EFE2-42C5-A080-AE16F604968B",
"versionEndExcluding": "10.0.19044.5737"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:arm64:*",
"vulnerable": true,
"matchCriteriaId": "BCF4434C-9197-405A-BBB3-53EA66ADAC9A",
"versionEndExcluding": "10.0.19045.5737"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x32:*",
"vulnerable": true,
"matchCriteriaId": "4FF191D7-85ED-430A-BA10-4E696CFF51BA",
"versionEndExcluding": "10.0.19045.5737"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "3630C9CC-2C8C-4089-926D-0981277CA599",
"versionEndExcluding": "10.0.19045.5737"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:arm64:*",
"vulnerable": true,
"matchCriteriaId": "990A3BD9-13CD-4391-806C-691EAEBEED09",
"versionEndExcluding": "10.0.22621.5191"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "50EA37C1-EE93-43EF-9D68-BD8E70A094E8",
"versionEndExcluding": "10.0.22621.5191"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "BA6E9856-A8DC-4C20-A8FC-BCF869413A0A",
"versionEndExcluding": "10.0.22631.5191"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:arm64:*",
"vulnerable": true,
"matchCriteriaId": "39A448D0-EB9F-42FE-85A2-A4AA88D4CEBD",
"versionEndExcluding": "10.0.26100.3775"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "8B1600DE-F4B9-456C-A42F-5E5CDB2D6DEF",
"versionEndExcluding": "10.0.26100.3775"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp1:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "BE676429-15DD-408B-A4EC-E405E64F9732",
"versionEndExcluding": "6.0.6003.23220"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*",
"vulnerable": true,
"matchCriteriaId": "167A3F9F-42A7-4D04-A8D5-55C2131E43AC",
"versionEndExcluding": "6.0.6003.23220"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "6D33A5A5-2116-4DF9-B7B5-AB049D7412DA",
"versionEndExcluding": "6.0.6003.23220"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DC0C898B-76DC-4C7A-9CB2-2A19AAB5F4A4",
"versionEndExcluding": "6.2.9200.25423"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3736F59-1016-4A81-B1D2-5F722CCCFF25",
"versionEndExcluding": "10.0.14393.7970"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7C505C73-E943-45F2-B869-D6CAAFCA8150",
"versionEndExcluding": "10.0.17763.7137"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4C707424-4A8F-4C49-AA02-0DA3D177A2FE",
"versionEndExcluding": "10.0.20348.3454"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0DA8E1E4-0C78-4ADC-9490-4A608D8601FD",
"versionEndExcluding": "10.0.25398.1551"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "AA03AE1F-F78C-4864-A1B6-15846AAD4899",
"versionEndExcluding": "10.0.26100.3775"
}
],
"operator": "OR"
}
]
}
]