Vulnerability Details : CVE-2025-24984
Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker to disclose information with a physical attack.
Products affected by CVE-2025-24984
- Microsoft » Windows Server 2008Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2008Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2008Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2008Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2012Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2012Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2012Versions from including (>=) 6.2.9200.0 and before (<) 6.2.9200.25368cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2012Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2012Versions from including (>=) 6.3.9600.0 and before (<) 6.3.9600.22470cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2012Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2016Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2016Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2016Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2016Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2016Versions from including (>=) 10.0.14393.0 and before (<) 10.0.14393.7876cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2019Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2019Versions from including (>=) 10.0.17763.0 and before (<) 10.0.17763.7009cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2019Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2019Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2019Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2022Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2004Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2004Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2004Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 2004Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*
- Microsoft » Windows 10 21h1Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 21h1Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 21h1Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
- cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 20h2Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 20h2Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 20h2Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 20h2Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*
- Microsoft » Windows 10 2004Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:*
- Microsoft » Windows 10 2004Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 20h2Versions from including (>=) 10.0.22631.0 and before (<) 10.0.22631.5039cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 20h2Versions from including (>=) 10.0.22621.0 and before (<) 10.0.22621.5039cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 20h2Versions from including (>=) 10.0.26100.0 and before (<) 10.0.26100.3476cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*
- Microsoft » Windows Server 20h2Versions from including (>=) 10.0.20348.0 and before (<) 10.0.20348.3328cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:x64:*
CVE-2025-24984 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Microsoft Windows NTFS Information Disclosure Vulnerability
CISA required action:
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA description:
Microsoft Windows New Technology File System (NTFS) contains an insertion of sensitive Information into log file vulnerability that allows an unauthorized attacker to disclose information with a physical attack. An attacker who successfully exploited this vulnerability could potentially read portion
Notes:
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-24984 ; https://nvd.nist.gov/vuln/detail/CVE-2025-24984
Added on
2025-03-11
Action due date
2025-04-01
Exploit prediction scoring system (EPSS) score for CVE-2025-24984
23.79%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2025-24984
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
4.6
|
MEDIUM | CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/... |
N/A
|
N/A
|
Microsoft Corporation | 2025-03-11 |
|
4.6
|
MEDIUM | CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
0.9
|
3.6
|
Microsoft Corporation | 2025-03-11 |
|
4.6
|
MEDIUM | CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/... |
N/A
|
N/A
|
MS-CVE-2025-24984 | 2025-03-11 |
CWE ids for CVE-2025-24984
-
The product writes sensitive information to a log file.Assigned by: secure@microsoft.com (Primary)
References for CVE-2025-24984
-
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24984
CVE-2025-24984 - Security Update Guide - Microsoft - Windows NTFS Information Disclosure VulnerabilityPatch;Vendor Advisory
Jump to