"Though in-the-wild exploitation details aren't known yet, looking back at the history of CLFS driver vulnerabilities, it is interesting to note that ransomware operators have developed a penchant for exploiting CLFS elevation of privilege flaws over the last few years."
"An attacker who successfully exploited this vulnerability could gain SYSTEM privileges," the company said in an advisory, crediting cybersecurity company CrowdStrike for discovering and reporting the flaw.
"It's worth noting that CVE-2024-49138 is the fifth actively exploited CLFS privilege escalation flaw since 2022 after CVE-2022-24521, CVE-2022-37969, CVE-2023-23376, and CVE-2023-28252."
Collection
[
|
...
]