CVE-2025-24984
MEDIUM KEVWindows 10/11, Server 2012-2016 NTFS Log File Information Disclosure
Title source: llmExploitation Summary
CVE-2025-24984 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added March 11, 2025.
Description
Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker to disclose information with a physical attack.
References (2)
Core 2
Core References
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24984
Patch, Vendor Advisory vendor-advisory
patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24984
Scores
CVSS v3
4.6
EPSS
0.0431
EPSS Percentile
89.2%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
active
Automatable
no
Technical Impact
partial
Details
CISA KEV
2025-03-11
VulnCheck KEV
2025-03-11
ENISA EUVD
EUVD-2025-6322
CWE
CWE-532
Status
published
Products (15)
microsoft/windows_10_1507
< 10.0.10240.20947 (2 CPE variants)
microsoft/windows_10_1607
< 10.0.14393.7876 (2 CPE variants)
microsoft/windows_10_1809
< 10.0.17763.7009 (2 CPE variants)
microsoft/windows_10_21h2
< 10.0.19044.5608
microsoft/windows_10_22h2
< 10.0.19045.5608
microsoft/windows_11_22h2
< 10.0.22621.5039
microsoft/windows_11_23h2
< 10.0.22631.5039
microsoft/windows_11_24h2
< 10.0.26100.3403
microsoft/windows_server_2012
microsoft/windows_server_2012
r2
... and 5 more
Published
Mar 11, 2025
KEV Added
Mar 11, 2025
Tracked Since
Feb 18, 2026