CVE-2024-38213

Exploited in the Wild ✓ Confirmed 0-Day

Triaged: March 5, 2026 5 articles

VulnLookup ↗ NVD ↗ MITRE ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

59.32%

probability

This CVE has a 59.32% probability of being exploited in the next 30 days.

0% Top 98.3th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Attack Intelligence

CWE-693 · Protection Mechanism Failure

Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days

TheHackerNews

Microsoft and Adobe Patch Tuesday, August 2024 Security Update Review

Qualys Aug 13, 2024

New Windows SmartScreen bypass exploited as zero-day since March

BleepingComputer Aug 13, 2024

Microsoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploited

BleepingComputer Aug 13, 2024

CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries

TheHackerNews

Signal Intelligence

Confidenceⓘ

85%

EPSS 59.32%

Mentions 5

Last Seen Aug 13, 2024

CNA Information

Analyst Note

CVE-2024-38213 is explicitly named in BleepingComputer's August 2024 Patch Tuesday article as one of 9 zero-days fixed. The first article title confirms exploitation as a zero-day since March 2024, which precedes the August 13, 2024 patch publication date. This satisfies the zero-day criteria: in-the-wild exploitation prior to patch availability.

Threat Actors 4

Hacking Team

apt_group 🇮🇹 IT

ELECTRUM

apt_group Information theft and espionage 🇷🇺 RU

APT 22

apt_group Information theft and espionage 🇨🇳 CN

DarkCasino

apt_group Financial gain

Triage Info

Decided atMar 05, 2026