CVE-2025-58722
dwmcore.dll — elevation of privilege
Summary
| Field | Value |
|---|---|
| Driver | dwmcore.dll (Desktop Window Manager Core Library) |
| Vulnerability Class | Elevation of Privilege |
| CVSS | 7.8 |
| Exploited ITW | No |
| Patch Date | October 14, 2025 |
Root Cause
A vulnerability in the DWM Core Library allows a local attacker to escalate privileges to SYSTEM. DWM runs as SYSTEM, so any code execution in the DWM process context yields full privileges.
Exploitation
The attacker sends crafted DWM operations to reach SYSTEM.
Exploitation Primitive
Crafted DWM operation → memory corruption
→ code execution in DWM (SYSTEM)