By skyforbes 
What You Need to Know
Last month, the tech world was shaken by one of the largest global computing outages in history. A buggy update from CrowdStrike Falcon caused widespread Blue Screens of Death (BSODs), leaving countless enterprise and business PCs incapacitated. This incident underscored the vulnerability of even fully updated systems to critical flaws. Now, just a month later, another serious security flaw has been identified, affecting fully patched Windows 10 and Windows 11 systems. The flaw, tracked as CVE-2024–6768, has the potential to cause similar catastrophic outcomes.
The Root of the Issue: CLFS.SYS Driver Flaw
The newly discovered vulnerability, CVE-2024–6768, resides in the Common Log File System (CLFS.SYS) driver of Windows. This driver is crucial for managing the Common Log File System, a subsystem used by Windows for various logging purposes. The flaw was discovered by cybersecurity firm Fortra, which revealed that the issue stems from improper validation of input data within the CLFS.SYS driver (CWE-1284).