CVE-2024-30051
7.8HIGHWindows DWM Core Library Elevation of Privilege Vulnerability
Publicado: 5/14/2024Actualizado: 10/28/2025
Vulnerabilidad Explotada Conocida (CISA)
Microsoft DWM Core Library contains a privilege escalation vulnerability that allows an attacker to gain SYSTEM privileges.
Acción Requerida:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Fecha Límite:
2024-06-04
Uso de Ransomware Conocido
Descripción
Windows DWM Core Library Elevation of Privilege Vulnerability
Análisis IAImpulsado por IA
Productos Afectados
microsoftwindows_10_1507
microsoftwindows_10_1507
microsoftwindows_10_1607
microsoftwindows_10_1607
microsoftwindows_10_1809
microsoftwindows_10_21h2
microsoftwindows_10_22h2
microsoftwindows_11_21h2
microsoftwindows_11_22h2
microsoftwindows_11_23h2
microsoftwindows_server_2016
microsoftwindows_server_2019
microsoftwindows_server_2022
Referencias
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30051PatchVendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30051PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-30051US Government Resource