CVE-2024-26160

EIP tracks 1 public exploit for CVE-2024-26160. PoCs published by CrackerCat.

AI-analyzed exploit summary This PoC exploits an information disclosure vulnerability in cldflt.sys (CVE-2024-26160) by crafting a malformed data packet to trigger a buffer overflow in CldiPortProcessGetRangeInfo, leaking kernel memory addresses. The exploit demonstrates the vulnerability by bypassing validation checks in CldiPortNotifyMessage.

Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability