Windows Common Log File System Driver (clfs.sys) Privilege Escalation

A privilege escalation vulnerability exists in the clfs.sys driver which comes installed by default on Windows 10 21H2, Windows 11 21H2 and Windows Server 20348 operating systems. This Metasploit module exploit makes use to two different kinds of specially crafted .blf files.

clfs default driver escalation exploit file files file system log metasploit operating systems privilege privilege escalation server system systems vulnerability windows windows 10 windows 11 windows common log file system windows server