CVE-2024-26170
HIGHWindows 10/11, Server 2022 Elevation of Privilege in Composite Image File System
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2024-26170. PoCs published by ProbNotAnExploiter.
AI-analyzed exploit summary The repository contains only a README and a LICENSE file with no actual exploit code or technical details. The README mentions researching CVE-2024-26170 or cimfs.sys for potential overflows or bugs but provides no functional PoC or analysis.
Description
Windows Composite Image File System (CimFS) Elevation of Privilege Vulnerability
Exploits (1)
github
STUB
by ProbNotAnExploiter · poc
https://github.com/ProbNotAnExploiter/CVE-2024-26170-extended
The repository contains only a README and a LICENSE file with no actual exploit code or technical details. The README mentions researching CVE-2024-26170 or cimfs.sys for potential overflows or bugs but provides no functional PoC or analysis.
Classification
Stub 90%
Attack Type
Other
Complexity
Theoretical
Reliability
Theoretical
Target:
cimfs.sys (Windows Common Information Model File System)
No auth needed
Prerequisites:
none
MITRE ATT&CK
devstral-2 · analyzed Jun 13, 2026
Full analysis →
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26170
Scores
CVSS v3
7.8
EPSS
0.0641
EPSS Percentile
92.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-20
Status
published
Products (7)
microsoft/windows_10_21h2
< 10.0.19044.4170
microsoft/windows_10_22h2
< 10.0.19045.4170
microsoft/windows_11_21h2
< 10.0.22000.2836
microsoft/windows_11_22h2
< 10.0.22621.3296
microsoft/windows_11_23h2
< 10.0.22631.3296
microsoft/windows_server_2022
< 10.0.20348.2340
microsoft/windows_server_2022_23h2
< 10.0.25398.763
Published
Mar 12, 2024
Tracked Since
Feb 18, 2026