Lucene search
+L

90 matches found

CVE
CVE
added 2025/04/08 5:23 p.m.97 views

CVE-2025-24073

CVE-2025-24073 affects the Windows DWM Core Library and stems from improper input validation, enabling a locally authorized attacker to elevate privileges. The vulnerability is described with a base CVSS v3.1 score of 7.8 (High) and local attack vector with low complexity, requiring low privilege...

7.8CVSS7.1AI score0.0056EPSS
Exploits0References1Affected Software13
CVE
CVE
added 2025/04/08 5:23 p.m.113 views

CVE-2025-24074

CVE-2025-24074 affects Microsoft Windows DWM Core Library. It is an Elevation of Privilege due to improper input validation, enabling local privilege escalation with a CVSSv3.1 base score of 7.8 (LOCAL, LOW attack complexity, NO user interaction). Impacted components include the DWM Core Library;...

7.8CVSS7.1AI score0.0056EPSS
Exploits0References1Affected Software10
Microsoft CVE
Microsoft CVE
added 2025/04/08 7:0 a.m.16 views

Windows DWM Core Library Elevation of Privilege Vulnerability

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.0056EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.3 views

PT-2025-15490 · Microsoft · Windows Dwm Core Library +1

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library affected versions not specified Description: The issue is related to improper input validation, which allows an authorized attacker to elevate privileges locally. This can affect the system, potentially leading to...

7.8CVSS7.5AI score0.0056EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.2 views

PT-2025-15488 · Microsoft · Windows Dwm Core Library +1

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library affected versions not specified Description: The issue is related to improper input validation, which allows an authorized attacker to elevate privileges locally. This could potentially lead to unauthorized access and...

7.8CVSS8.3AI score0.0056EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.2 views

PT-2025-15487 · Microsoft · Windows Dwm Core Library +1

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library affected versions not specified Description: The issue is related to improper input validation, which allows an authorized attacker to elevate privileges locally. This could potentially lead to unauthorized access and...

7.8CVSS8.3AI score0.0056EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.16 views

PT-2024-37: Local Privilege Escalation (LPE) vulnerability in Windows DWM Core Library

The Local Privilege Escalation LPE vulnerability was discovered in the Microsoft Windows DWM Core library. The vulnerability allows an attacker to gain SYSTEM privileges. The affected products: Windows Server 2025. Versions: from 10.0.0 before 10.0.26100.2314 and from 10.0.0 before 10.0.26100.224...

8.5CVSS6.9AI score0.03927EPSS
Exploits0
GithubExploit
GithubExploit
added 2024/08/14 4:20 p.m.942 views

Exploit for Out-of-bounds Write in Microsoft

Windows DWM Core Library Elevation of Privilege Vulnerability...

7.8CVSS9.3AI score0.05687EPSS
Exploits2
Cvelist
Cvelist
added 2024/08/13 5:30 p.m.28 views

CVE-2024-38150 Windows DWM Core Library Elevation of Privilege Vulnerability

...

7.8CVSS0.03715EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/10 12:0 a.m.5 views

PT-2024-7862 · Microsoft · Windows Dwm Core Library +3

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library versions prior to the fixed version Description: The issue is related to an elevation of privilege vulnerability in the Windows DWM Core Library, which can be exploited to allow an attacker to gain system-level...

7.8CVSS7AI score0.03927EPSS
Exploits0References19
Rapid7 Blog
Rapid7 Blog
added 2024/05/14 8:25 p.m.79 views

Patch Tuesday - May 2024

Microsoft is addressing 61 vulnerabilities this May 2024 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation and/or public disclosure for three of the vulnerabilities published today. At time of writing, two of the vulnerabilities patched today are listed on CISA KEV. Microsoft is...

9.6CVSS10AI score0.8399EPSS
Exploits41
Vulnrichment
Vulnrichment
added 2024/05/14 4:57 p.m.22 views

CVE-2024-30035 Windows DWM Core Library Elevation of Privilege Vulnerability

...

7.8CVSS6.8AI score0.03544EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/05/14 7:0 a.m.25 views

Windows DWM Core Library Information Disclosure Vulnerability

...

5.5CVSS5.7AI score0.00793EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/05/14 7:0 a.m.27 views

Windows DWM Core Library Elevation of Privilege Vulnerability

...

7.8CVSS8.1AI score0.04524EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.2 views

PT-2024-3715 · Microsoft · Windows Dwm Core Library +1

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library affected versions not specified Description: The issue is related to the use of memory after it has been freed, which can be exploited to elevate privileges. This allows an attacker to affect the system. No informatio...

7.8CVSS6.4AI score0.04524EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2024/05/14 12:0 a.m.37 views

CVE-2024-30051

Windows DWM Core Library Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS7.3AI score0.05687EPSS
In wildExploits2References2
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.4 views

PT-2024-3342

Name of the Vulnerable Software and Affected Versions Windows DWM Core Library affected versions not specified Description The issue is related to an elevation of privilege vulnerability in the Windows DWM Core Library. This vulnerability allows attackers to affect the system. It has been linked ...

7.8CVSS9.3AI score0.05687EPSS
Exploits2References90
Kaspersky
Kaspersky
added 2024/05/14 12:0 a.m.73 views

KLA67433 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote cod...

8.8CVSS10AI score0.11471EPSS
Exploits4References64
CVE
CVE
added 2024/04/09 5:0 p.m.176 views

CVE-2024-26172

CVE-2024-26172 affects Windows DWM Core Library. Affects the Windows DWM Core Library component; root cause described as information disclosure. Documented impact is access to sensitive data with a CVSS v3.1 base score of 5.5 (LOCAL, LOW privileges required, user interaction none, availability im...

5.5CVSS6.6AI score0.00722EPSS
Exploits0References1Affected Software9
NVD
NVD
added 2023/11/14 6:15 p.m.31 views

CVE-2023-36033

Windows DWM Core Library Elevation of Privilege Vulnerability...

7.8CVSS0.11977EPSS
Exploits0References2
Rows per page
Query Builder