Return to CVE list

CVE-2025-24058

7.8

Critical

CVE-2025-24058

8 Apr 2025

secure@microsoft.com

Awaiting Analysis

View on MITRE Find on GitHub

Description

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

secure@microsoft.com

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24058