CVE-2024-29050

HIGH

Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Remote Code Execution via Cryptographic Services

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-29050. PoCs published by Akrachli.

AI-analyzed exploit summary The PoC demonstrates an integer overflow vulnerability in Windows' cryptographic services (CVE-2024-29050) by crafting a malformed ASN.1 structure to trigger incorrect memory management. It uses CryptDecodeObject to exploit the flaw, potentially leading to memory corruption or remote code execution.

Description

Windows Cryptographic Services Remote Code Execution Vulnerability

Exploits (1)

nomisec WORKING POC 2 stars

by Akrachli · poc

https://github.com/Akrachli/CVE-2024-29050

View Code ZIP pw:eip

The PoC demonstrates an integer overflow vulnerability in Windows' cryptographic services (CVE-2024-29050) by crafting a malformed ASN.1 structure to trigger incorrect memory management. It uses CryptDecodeObject to exploit the flaw, potentially leading to memory corruption or remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Microsoft Windows Cryptographic Services (Crypt32.dll)

No auth needed

Prerequisites: Access to a vulnerable Windows system with Crypt32.dll · Ability to execute arbitrary code on the target system

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29050

Scores

CVSS v3 8.4

EPSS 0.0125

EPSS Percentile 65.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-295 CWE-197

Status published

Products (15)

microsoft/windows_10_1507 < 10.0.10240.20596 (2 CPE variants)

microsoft/windows_10_1607 < 10.0.14393.6897 (2 CPE variants)

microsoft/windows_10_1809 < 10.0.17763.5696

microsoft/windows_10_21h2 < 10.0.19044.4291

microsoft/windows_10_22h2 < 10.0.19045.4291

microsoft/windows_11_21h2 < 10.0.22000.2899

microsoft/windows_11_22h2 < 10.0.22621.3447

microsoft/windows_server_2008

microsoft/windows_server_2008 r2 sp1

microsoft/windows_server_2012

... and 5 more

Published Apr 09, 2024

Tracked Since Feb 18, 2026