Vulnerabilities

CVE-2025-30038

by Fred · 27/08/2025

The vulnerability consists of a session ID leak when saving a file downloaded from CGM CLININET. The identifier is exposed through a built-in Windows security feature that stores additional metadata in an NTFS alternate data stream (ADS) for all files downloaded from potentially untrusted sources.

More information : https://cert.pl/en/posts/2025/08/CVE-2025-2313/

Similar

Tags: Cybersecurity Alert