Description
Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.
Related CPE's
o
microsoft
windows_10_1507
2
o
microsoft
windows_10_1607
2
o
microsoft
windows_10_1809
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
o
microsoft
windows_server_2008
3
o
microsoft
windows_server_2012
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 · Medium
Information
Source identifier
Vulnerability status
Analyzed
Published
2025-04-08T16:15:45.020Z
11 months agoLast modified
2025-07-10T13:52:05.307Z
8 months ago