CVE-2024-30051 - Microsoft DWM Core Library Privilege Escalation Vulnerability
Project:Microsoft
Product:DWM Core Library
Date Added:2024-05-14Due Date:2024-06-04
Vulnerability Name
Microsoft DWM Core Library Privilege Escalation Vulnerability
Description
Microsoft DWM Core Library contains a privilege escalation vulnerability that allows an attacker to gain SYSTEM privileges.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30051
https://nvd.nist.gov/vuln/detail/CVE-2024-30051
Related News Articles
Microsoft fixes Windows zero-day exploited in QakBot malware attacksMay 15, 2024
Microsoft May 2024 Patch Tuesday fixes 3 zero-days, 61 flawsMay 15, 2024
