CVE-2024-21338

HIGH KEV RANSOMWARE

Windows Kernel - Privilege Escalation

Title source: llm

Description

Windows Kernel Elevation of Privilege Vulnerability

Exploits (11)

exploitdb WORKING POC
by Milad karimi · clocalwindows
https://www.exploit-db.com/exploits/52275
exploitdb SUSPICIOUS
by E1 Coders · rubylocalwindows
https://www.exploit-db.com/exploits/51946
nomisec WORKING POC 315 stars
by hakaioffsec · local
https://github.com/hakaioffsec/CVE-2024-21338
nomisec WORKING POC 74 stars
by Crowdfense · local
https://github.com/Crowdfense/CVE-2024-21338
nomisec WORKING POC 42 stars
by tykawaii98 · local
https://github.com/tykawaii98/CVE-2024-21338_PoC
nomisec STUB 7 stars
by Zombie-Kaiser · poc
https://github.com/Zombie-Kaiser/CVE-2024-21338-x64-build-
nomisec WORKING POC 2 stars
by hackyboiz · local
https://github.com/hackyboiz/kcfg-bypass
nomisec WORKING POC 2 stars
by UMU618 · local
https://github.com/UMU618/CVE-2024-21338
nomisec WORKING POC
by MistyFir · poc
https://github.com/MistyFir/CVE-2024-21338-Exploit
nomisec WORKING POC
by wusijie · poc
https://github.com/wusijie/CVE-2024-21338-1

References (5)

Scores

CVSS v3 7.8
EPSS 0.7914
EPSS Percentile 99.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2024-03-04
VulnCheck KEV 2024-02-13
InTheWild.io 2024-02-13
ENISA EUVD EUVD-2024-19050
Ransomware Use Confirmed
CWE
CWE-822
Status published
Products (9)
microsoft/windows_10_1809 < 10.0.17763.5458
microsoft/windows_10_21h2 < 10.0.19044.4046
microsoft/windows_10_22h2 < 10.0.19045.4046
microsoft/windows_11_21h2 < 10.0.22000.2777
microsoft/windows_11_22h2 < 10.0.22621.3155
microsoft/windows_11_23h2 < 10.0.22631.3155
microsoft/windows_server_2019 < 10.0.17763.5458
microsoft/windows_server_2022 < 10.0.20348.2322
microsoft/windows_server_2022_23h2 < 10.0.25398.709
Published Feb 13, 2024
KEV Added Mar 04, 2024
Tracked Since Feb 18, 2026