cve/2025/CVE-2025-32706.md

CVE-2025-32706

Description

Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

POC

Reference

• https://www.vicarius.io/vsociety/posts/cve-2025-32706-detection-script-elevation-of-privilege-vulnerability-in-microsoft-windows-common-log-file-system-driver
• https://www.vicarius.io/vsociety/posts/cve-2025-32706-mitigation-script-elevation-of-privilege-vulnerability-in-microsoft-windows-common-log-file-system-driver

Github

• https://github.com/ARPSyndicate/cve-scores
• https://github.com/packetinside/CISA_BOT
• https://github.com/ums91/CISA_BOT