Live

Local Privilege Escalation

The latest Local Privilege Escalation coverage — news, analysis, and updates from the WindowsNews.AI desk.

12 stories in view AI assisted desk updated 9:57 AM
Latest Most Read Breaking
Sort
Local Privilege Escalation · Patch Tuesday

Patch Tuesday Fix: CVE-2026-45597 Gives SYSTEM Access via UI Automation Bug

Microsoft's June 9, 2026 security update addresses a significant local elevation-of-privilege vulnerability tracked as CVE-2026-45597. The flaw resides in the Windows UI Automation Manager,...

Advertisement
Cloud Files Mini Filter Driver · Local Privilege Escalation

MiniPlasma Windows 11 Exploit Achieves SYSTEM Access via Cloud Files Driver Flaw

A public Windows 11 proof-of-concept exploit that hooks into the Cloud Files Mini Filter Driver was released on May 17, 2026 by a researcher operating under the handles Chaotic Eclipse and...

SE Security Desk·7w ago
Linux Kernel Vulnerability · Local Privilege Escalation

PinTheft LPE: CVE-2026-43494 Linux Kernel RDS Zero-Copy Double-Free Exploit Explained

A severe Linux kernel vulnerability tracked as CVE-2026-43494 was published through the National Vulnerability Database on May 21, 2026, exposing a double-free memory condition in the Reliable...

SE Security Desk·8w ago
Cloud Files Driver · Local Privilege Escalation

MiniPlasma PoC Questions Windows 11 KB5089549 Fix for CVE-2020-17103 EoP Vulnerability

A newly released proof-of-concept (PoC) dubbed MiniPlasma is resurrecting concerns over a four-year-old local privilege escalation bug in Microsoft's Cloud Files Mini Filter Driver. The PoC,...

SE Security Desk·8w ago
cve_2026_34341_windows.jpg
Cve-2026-34341 · Lldp Vulnerability

CVE-2026-34341: Windows LLDP Double-Free Bug Gives Attackers SYSTEM Access

Microsoft’s May 2026 Patch Tuesday shipped a fix for CVE-2026-34341, an Important-rated elevation-of-privilege vulnerability in the Windows Link-Layer Discovery Protocol. A low-privileged local...

SE Security Desk·9w ago
cve_2026_41088_microsoft.jpg
Afd Sys · Cve-2026-41088

CVE-2026-41088: Microsoft Patches AFD.sys Elevation of Privilege Vulnerability in May 2026 Patch Tuesday

Microsoft shipped a security update on May 12, 2026, to plug a local elevation-of-privilege hole in the Windows Ancillary Function Driver for Winsock (AFD.sys). The vulnerability, tracked as...

SE Security Desk·9w ago
microsoft_patches_office_flaw.jpg
Cve 2026 40419 · Local Privilege Escalation

Microsoft Patches Office Flaw That Could Let Attackers Seize Full Windows Control

Microsoft disclosed on May 12, 2026, that a vulnerability in the Office Click-To-Run service could hand a low-privileged attacker complete control of a Windows machine. The flaw, tracked as...

SE Security Desk·9w ago
Cve-2026-40410 · Local Privilege Escalation

CVE-2026-40410: Critical Windows SMB Client Use-After-Free Privilege Escalation Flaw Patched

Microsoft has released an emergency security update to address a newly discovered elevation-of-privilege vulnerability in the Windows SMB Client, tracked as CVE-2026-40410. Rated Important with a...

SE Security Desk·9w ago
Clfs Driver Vulnerability · Cve-2026-40407

Windows CLFS Zero-Day Gets Critical Patch: May 2026 Tuesday Fix Now Live

Microsoft's May 2026 Patch Tuesday brought a fix for CVE-2026-40407, a local privilege escalation vulnerability in the Windows Common Log File System (CLFS) driver. The flaw, rated Important, allows...

SE Security Desk·9w ago