1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Microsoft Windows DWM Core Library Use-After-Free Vulnerability

Known Exploited Vulnerabilities CVE-2025-30400

Microsoft Windows DWM Core Library contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2025-30400 Microsoft Windows DWM Core Library Use-After-Free Vulnerability exploitation_technique T1068 Exploitation for Privilege Escalation
Comments
This vulnerability has been exploited to escalate an attacker's privileges to SYSTEM-level via Microsoft Windows Desktop Window Manager (DWM) Core Library, allowing the attacker to take significant actions such as registry modification.
References
  1. https://github.com/encrypter15/CVE-2025-30400
CVE-2025-30400 Microsoft Windows DWM Core Library Use-After-Free Vulnerability primary_impact T1112 Modify Registry
Comments
This vulnerability has been exploited to escalate an attacker's privileges to SYSTEM-level via Microsoft Windows Desktop Window Manager (DWM) Core Library, allowing the attacker to take significant actions such as registry modification.
References
  1. https://github.com/encrypter15/CVE-2025-30400