.. / CVE-2024-30051

Exploit for Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

Description:

Microsoft DWM Core Library contains a privilege escalation vulnerability that allows an attacker to gain SYSTEM privileges. The flaw arises due to a heap-based buffer overflow in the CCommandBuffer::Initialize method, triggered by a miscalculation during memory allocation.

Affected Products:

Proof of Concept

PoC exploits

References:

https://nvd.nist.gov/vuln/detail/CVE-2024-30051
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30051