Session ID Leak in CGM CLININET Affects Windows Security Features
CVE-2025-30038

7.3HIGH

Key Information:

Vendor: Cgm
Status: Cgm Clininet
Vendor: CVE Published:; 27 August 2025

What is CVE-2025-30038?

The vulnerability involves a session ID leak that occurs when users download files from CGM CLININET. This issue arises due to a built-in Windows feature that stores extra metadata in an NTFS alternate data stream (ADS) for files sourced from potentially untrusted locations. As a consequence, the session ID can inadvertently be exposed, leading to potential exploitation by malicious actors.

Affected Version(s)

CGM CLININET 0 < 2025.MS1

References

https://cert.pl/en/posts/2025/08/CVE-2025-2313/

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 27, 2025
Vulnerability Reserved
Mar 14, 2025

Credit

Maciej Kazulak

Cgm

What is CVE-2025-30038?

Affected Version(s)

References

CVSS V4

Timeline

Credit