Primary

Context

Microsoft Windows DWM Core Library Out-of-Bounds Read Vulnerability Allowing Information Disclosure

Vulnerability

Patched

A vulnerability allowing out-of-bounds read has been identified in the Windows DWM Core Library. This issue enables an authorized attacker to locally disclose information by reading portions of heap memory.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure by allowing an attacker to read sensitive data from memory.

Remediation

Users can download the security update for this vulnerability via the Microsoft Update Catalog. The update is included in the June 2026 Patch Tuesday release.

Added: Jun 9, 2026, 7:18 PM

Updated: Jun 9, 2026, 7:18 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.3

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

3.3

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows DWM Core Library Out-of-Bounds Read Vulnerability Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows 11

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating