CVE-2024-38147

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 13, 2024
Updated: Aug 16, 2024
CWE ID 416

Summary

CVE-2024-38147 is an elevation of privilege vulnerability affecting Microsoft's Display Driver Model (DWM) Core Library. An attacker who successfully exploits this vulnerability can gain heightened system privileges on a Windows system. This issue poses a significant risk, as an attacker could potentially install unauthorized software or make significant changes to the system. Microsoft has released a security update to address this vulnerability, and it is strongly recommended that users apply the patch as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows 11
  • Microsoft Windows

Affected Vendors

  • Microsoft