Microsoft Working To Patch 'RoguePlanet' Zero-Day

Source: IT Builder News Category: Full Stack Date: 2026-06-18 13:18:56

wiredmikey shares a report from SecurityWeek: Microsoft on Wednesday published an advisory acknowledging the public disclosure of a vulnerability in Defender that could lead to privilege escalation. The security defect, tracked as CVE-2026-50656 (CVSS score of 7.8), was dropped last week by security researcher Nightmare Eclipse (also known as Chaotic Eclipse). "We are working to provide a high-quality security update that addresses this vulnerability. We will provide information in this CVE when the update is available," Microsoft adds. RoguePlanet, Nightmare Eclipse explained last week, targets a race condition in Microsoft Defender and allows attackers to gain System privileges. The researcher released a proof-of-concept (PoC) exploit that demonstrates local privilege escalation (LPE) on Windows 11 and Windows 10 systems with the June 2026 patches installed. [...] On Wednesday, Nightmare Eclipse pointed out that the PoC works regardless of whether Defender's real-time protection is enabled or disabled. It may even work in passive mode, the researcher said.

Microsoft Working To Patch 'RoguePlanet' Zero-Day

More From This Topic

The Politics of the Big Game

New York's Jewish Federation Returns to Meet Pope Leo XIV

Trump signs MoU as Iran says uranium will remain in country, IDF Lebanon attacks 'breach' agreement

U.S. and Iran Sign MOU to End War; Pakistani PM: Deal Takes Immediate Effect U.S. and Iran Sign MOU to End War; Pakistani PM Says Deal Takes 'Immediate Effect'

Trump suggests Israel in no place to criticize Iran deal for not joining 2020 strike on Soleimani

Why Tamil producers want actors to adopt Allu Arjun and Ranveer Singh’s salary model

Recommended Reads

Latest Technology Updates