- Identification: CVE-2021-28310
- CVSS: 7.8 of 10
- Risk factor: high
- Type of vulnerability: privilege escalation
- Type of the bug: writing outside of the range in dwmcore.dll
It’s a “privilege escalation” type of vulnerability in the Microsoft DWM service with a vulnerability score of 7.8. Thy duty of the DWM service is to manage windows of different running software. For example, when the client moves a window on another window, for instance, none of the running software knows their windows must be in shadow form up on the other window. Desktop Window Manager performs this duty, and for this reason, it is a key service in Windows that existed from Vista until now and cannot deactivate in Windows version 8 and higher.
If a user with restricted defined privilege abuses this vulnerability, then he/she can attain the highest privilege to execute codes remotely.
Vulnerable versions
- Windows Server version 20H2 (and Server Core Installation)
- Windows 10 version 20H2
- Windows Server version 2004 (and Server Core Installation)
- Windows 10 version 2004
- Windows Server version 1909 (and Server Core Installation)
- Windows 10 version 1909
- Windows 10 version 1809
- Windows 10 version 1803
Security recommendation
You can fix this vulnerability by installing the following patch: