CVE-2024-38080

HIGH KEV

Windows Hyper-V - Privilege Escalation

Title source: llm

Exploitation Summary

CVE-2024-38080 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added July 9, 2024. EIP tracks 1 public exploit from researchers including pwndorei.

AI-analyzed exploit summary This PoC exploits CVE-2024-38080 by leveraging a buffer overflow in the VidExoBroker driver via crafted IOCTL requests, targeting a Windows Hyper-V component. The code demonstrates a local privilege escalation by manipulating partition properties and sending malformed data to trigger memory corruption.

Description

Windows Hyper-V Elevation of Privilege Vulnerability

Exploits (1)

nomisec WORKING POC 30 stars

by pwndorei · local

https://github.com/pwndorei/CVE-2024-38080

View Code ZIP pw:eip

This PoC exploits CVE-2024-38080 by leveraging a buffer overflow in the VidExoBroker driver via crafted IOCTL requests, targeting a Windows Hyper-V component. The code demonstrates a local privilege escalation by manipulating partition properties and sending malformed data to trigger memory corruption.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows Hyper-V (VidExoBroker driver)

No auth needed

Prerequisites: Hyper-V enabled · Local access to the system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1055 - Process Injection

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-38080

Patch, Vendor Advisory vendor-advisory patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38080

Scores

CVSS v3 7.8

EPSS 0.0712

EPSS Percentile 93.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable no

Technical Impact total

Details

CISA KEV 2024-07-09

VulnCheck KEV 2024-07-09

InTheWild.io 2024-07-09

ENISA EUVD EUVD-2024-37774

CWE

CWE-190

Status published

Products (5)

microsoft/windows_11_21h2 < 10.0.22000.3079

microsoft/windows_11_22h2 < 10.0.22621.3880

microsoft/windows_11_23h2 < 10.0.22631.3880

microsoft/windows_server_2022 < 10.0.20348.2582

microsoft/windows_server_2022_23h2 < 10.0.25398.1009

Published Jul 09, 2024

KEV Added Jul 09, 2024

Tracked Since Feb 18, 2026