Windows DWM Core Library
by Microsoft
CVEs (33)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-23288 | Hig | 0.46 | 7.0 | 0.01 | Mar 9, 2022 | Windows DWM Core Library Elevation of Privilege Vulnerability | ||
| CVE-2026-48566 | Med | 0.36 | 5.5 | 0.00 | Jun 9, 2026 | Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. | ||
| CVE-2021-41339 | Med | 0.31 | 4.7 | 0.00 | Oct 13, 2021 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | ||
| CVE-2024-30051 | 0.22 | — | 0.06 | KEV | May 14, 2024 | Windows DWM Core Library Elevation of Privilege Vulnerability | ||
| CVE-2025-64680 | 0.00 | — | 0.00 | Dec 9, 2025 | Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-24060 | 0.00 | — | 0.01 | Apr 8, 2025 | Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-21304 | 0.00 | — | 0.01 | Jan 14, 2025 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | |||
| CVE-2024-43629 | 0.00 | — | 0.04 | Nov 12, 2024 | Windows DWM Core Library Elevation of Privilege Vulnerability | |||
| CVE-2024-38147 | 0.00 | — | 0.03 | Aug 13, 2024 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | |||
| CVE-2024-38056 | 0.00 | — | 0.01 | Jul 9, 2024 | Microsoft Windows Codecs Library Information Disclosure Vulnerability | |||
| CVE-2024-38055 | 0.00 | — | 0.01 | Jul 9, 2024 | Microsoft Windows Codecs Library Information Disclosure Vulnerability | |||
| CVE-2024-30032 | 0.00 | — | 0.05 | May 14, 2024 | Windows DWM Core Library Elevation of Privilege Vulnerability | |||
| CVE-2024-26172 | 0.00 | — | 0.01 | Apr 9, 2024 | Windows DWM Core Library Information Disclosure Vulnerability |
- risk 0.46cvss 7.0epss 0.01
Windows DWM Core Library Elevation of Privilege Vulnerability
- risk 0.36cvss 5.5epss 0.00
Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.
- risk 0.31cvss 4.7epss 0.00
Microsoft DWM Core Library Elevation of Privilege Vulnerability
- risk 0.22cvss —epss 0.06
Windows DWM Core Library Elevation of Privilege Vulnerability
- CVE-2025-64680Dec 9, 2025risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
- CVE-2025-24060Apr 8, 2025risk 0.00cvss —epss 0.01
Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
- CVE-2025-21304Jan 14, 2025risk 0.00cvss —epss 0.01
Microsoft DWM Core Library Elevation of Privilege Vulnerability
- CVE-2024-43629Nov 12, 2024risk 0.00cvss —epss 0.04
Windows DWM Core Library Elevation of Privilege Vulnerability
- CVE-2024-38147Aug 13, 2024risk 0.00cvss —epss 0.03
Microsoft DWM Core Library Elevation of Privilege Vulnerability
- CVE-2024-38056Jul 9, 2024risk 0.00cvss —epss 0.01
Microsoft Windows Codecs Library Information Disclosure Vulnerability
- CVE-2024-38055Jul 9, 2024risk 0.00cvss —epss 0.01
Microsoft Windows Codecs Library Information Disclosure Vulnerability
- CVE-2024-30032May 14, 2024risk 0.00cvss —epss 0.05
Windows DWM Core Library Elevation of Privilege Vulnerability
- CVE-2024-26172Apr 9, 2024risk 0.00cvss —epss 0.01
Windows DWM Core Library Information Disclosure Vulnerability
Page 2 of 2