HomeCVE Intelligence › CVE-2025-29824
CVSS 7.8 HIGH 🔴 ACTIVELY EXPLOITED Privilege Escalation

CVE-2025-29824: Microsoft CLFS Driver

Windows Common Log File System driver zero-day used by PipeMagic backdoor. Patched April 2025.

7.8CVSS Score
HIGHSeverity
YESCISA KEV
Privilege EscalationImpact Type

📋 Vulnerability Details

CVE IDCVE-2025-29824
VendorMicrosoft
Affected ProductCLFS Driver
Vulnerability TypePrivilege Escalation
CVSS Score7.8 (HIGH)
Actively Exploited✅ Yes — CISA KEV Listed
Patch AvailableApril 2025 Patch Tuesday
Reported ByCYBERDUDEBIVASH SENTINEL APEX Intelligence
⚡ DETECTION RULES AVAILABLE

Get CVE-2025-29824 Detection Pack

Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.

✓ Sigma Rules ✓ YARA Pack ✓ IOC Table ✓ SIEM Queries
🛡️ Get Detection Pack → 🔌 Access via API →

🔗 Related Intelligence