Known Exploited Vulnerability: CVE-2018-0824

Microsoft COM for Windows Deserialization of Untrusted Data Vulnerability

CVE detail

Catalog version: 2026.06.25 Date added: 2024-08-05 Due date: 2024-08-26 CISA catalog

Product: Windows

Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Known ransomware campaign use: Unknown

CWEs

CWE-502 MITRE ↗

cvelogic Threat Intelligence