![](https://webcf.waybackmachine.org/web/20210422211647im_/https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2019/04/09094920/abstract-digital-blue-800x450.jpg)
Zero-day vulnerability in Desktop Window Manager (CVE-2021-28310) used in the wild
CVE-2021-28310 is an out-of-bounds (OOB) write vulnerability in dwmcore.dll, which is part of Desktop Window Manager (dwm.exe). We believe it is exploited in the wild, potentially by several threat actors.