CNNVD-202512-1194 Information

Dec 09, 2025 cve

CNNVD ID

CNNVD-202512-1194

CVE-2025-62470

  • CNNVD Published: 2025-12-09

Description (Chinese)

Microsoft Windows Common Log File System Driver是美国微软(Microsoft)公司的通用日志文件系统 (CLFS) API 提供了一个高性能、通用的日志文件子系统,专用客户端应用程序可以使用该子系统并且多个客户端可以共享以优化日志访问。 Microsoft Windows Common Log File System Driver存在安全漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems。

Description (English)

Microsoft Windows Common Log File System Driver, a United States-based Microsoft Common Log File System (CLFS) API, provides a high-performance, common log file subsystem that can be used by a dedicated client application and shared by multiple clients to optimize log access. There is a security gap in Microsoft Windows Common Log File System Driver. The attackers use this loophole to enhance their authority. The following products and versions have been affected: Wows for Service 2 for Service 2 for Service 2 for Service 2 for Service 5 for Service 2 for Service 5 for Service 5 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 7 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 5 for Service 5 for Service 6 for Service 6 for Service 2 for Service 2 for Service 2 for Service 2 for Service 6 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service and 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service 2 for Service and 2 for Service 2 for Service 2 for Service 2 for Service

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

微软

Published

2025-12-09

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62470

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62470

Share on: