{"uuid": "c77fe848-afb5-40a6-b8c7-bc3cd7ae3ef0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21338", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mqhj2etzax2b", "content": "Lazarus used this as a zero-day. No BYOVD needed. The vulnerable driver is already on every Windows machine.\n\nCVE-2024-21338 exploits appid.sys (AppLocker's driver) to call a user-controlled function pointer i\u2026\n\n\ud83d\udd01 RT @cr3ghost | reposted by @_subTee\nhttps://x.com/cr3ghost/status/2076290981855699151", "creation_timestamp": "2026-07-12T15:37:35.041399Z"}