CVE-2021-33739

HIGH KEV

Microsoft DWM Core Library - Privilege Escalation

Title source: llm

Description

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Exploits (6)

nomisec WORKING POC 10 stars

by freeide2017 · local

https://github.com/freeide2017/CVE-2021-33739-POC

View Code ZIP pw:eip

nomisec WORKING POC 5 stars

by giwon9977 · local

https://github.com/giwon9977/CVE-2021-33739_PoC_Analysis

View Code ZIP pw:eip

inthewild

poc

https://github.com/lagal1990/cve-2021-33739-poc

View on inthewild

inthewild

poc

https://github.com/expdev893/cve-2021-33739-poc

View on inthewild

inthewild WORKING POC

poc

https://github.com/giwon9977/cve-2021-33739_poc

View Code ZIP pw:eip

patchapalooza WRITEUP

by Ascotbe · local

https://github.com/Ascotbe/Kernelhub

View Code ZIP pw:eip

References (2)

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-33739

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-33739

Scores

CVSS v3 8.4

EPSS 0.1899

EPSS Percentile 95.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2021-11-03

VulnCheck KEV 2021-06-08

InTheWild.io 2021-06-14

ENISA EUVD EUVD-2021-20416

Status published

Products (6)

microsoft/windows_10_1909 < 10.0.18363.1621

microsoft/windows_10_2004 < 10.0.19041.1052

microsoft/windows_10_20h2 < 10.0.19042.1052

microsoft/windows_10_21h1 < 10.0.19043.1052

microsoft/windows_server_2004 < 10.0.19041.1052

microsoft/windows_server_20h2 < 10.0.19042.1052

Published Jun 08, 2021

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026