CVE-2025-55681
dwmcore.dll — out-of-bounds access allows elevation of privilege
Summary
| Field | Value |
|---|---|
| Driver | dwmcore.dll (Desktop Window Manager Core Library) |
| Vulnerability Class | Out-of-Bounds Access |
| CVSS | 7.8 |
| Exploited ITW | No |
| Patch Date | October 14, 2025 |
Root Cause
The DWM Core Library skips array index validation during composition surface operations, and an out-of-bounds memory access results. DWM runs as SYSTEM, so corruption in this context yields full privileges.
Exploitation
The attacker triggers the OOB access through crafted window composition operations. The memory corruption gives code execution in the SYSTEM-context DWM process.
Exploitation Primitive
Crafted composition operation → OOB access
→ memory corruption → code execution in DWM (SYSTEM)