Local Privilege Escalation
The latest Local Privilege Escalation coverage — news, analysis, and updates from the WindowsNews.AI desk.
Patch Tuesday Fix: CVE-2026-45597 Gives SYSTEM Access via UI Automation Bug
Microsoft's June 9, 2026 security update addresses a significant local elevation-of-privilege vulnerability tracked as CVE-2026-45597. The flaw resides in the Windows UI Automation Manager,...
Microsoft Patches Critical Kinect Flaw Allowing Local Privilege Escalation to SYSTEM
Microsoft released a security update on June 9, 2026, addressing CVE-2026-41092, an Important-rated elevation-of-privilege vulnerability in Microsoft Kinect. The flaw stems from improper access...
CVE-2026-34335 AFD.sys: How Microsoft's Patch Confidence Aids Enterprise Prioritization
Microsoft has disclosed a new elevation-of-privilege vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys), tracked as CVE-2026-34335, in its latest Security Update Guide. The...
New haveged Patch Closes Local Root Exploit—Windows Admins Should Act Now
On May 19-20, 2026, the maintainers of haveged, a widely-used Linux entropy daemon, released version 1.9.21 to fix CVE-2026-41054, a local privilege escalation flaw that allows any unprivileged user...
MiniPlasma Windows 11 Exploit Achieves SYSTEM Access via Cloud Files Driver Flaw
A public Windows 11 proof-of-concept exploit that hooks into the Cloud Files Mini Filter Driver was released on May 17, 2026 by a researcher operating under the handles Chaotic Eclipse and...
PinTheft LPE: CVE-2026-43494 Linux Kernel RDS Zero-Copy Double-Free Exploit Explained
A severe Linux kernel vulnerability tracked as CVE-2026-43494 was published through the National Vulnerability Database on May 21, 2026, exposing a double-free memory condition in the Reliable...
MiniPlasma PoC Questions Windows 11 KB5089549 Fix for CVE-2020-17103 EoP Vulnerability
A newly released proof-of-concept (PoC) dubbed MiniPlasma is resurrecting concerns over a four-year-old local privilege escalation bug in Microsoft's Cloud Files Mini Filter Driver. The PoC,...
CVE-2026-34341: Windows LLDP Double-Free Bug Gives Attackers SYSTEM Access
Microsoft’s May 2026 Patch Tuesday shipped a fix for CVE-2026-34341, an Important-rated elevation-of-privilege vulnerability in the Windows Link-Layer Discovery Protocol. A low-privileged local...
CVE-2026-41088: Microsoft Patches AFD.sys Elevation of Privilege Vulnerability in May 2026 Patch Tuesday
Microsoft shipped a security update on May 12, 2026, to plug a local elevation-of-privilege hole in the Windows Ancillary Function Driver for Winsock (AFD.sys). The vulnerability, tracked as...
Microsoft Patches Office Flaw That Could Let Attackers Seize Full Windows Control
Microsoft disclosed on May 12, 2026, that a vulnerability in the Office Click-To-Run service could hand a low-privileged attacker complete control of a Windows machine. The flaw, tracked as...
CVE-2026-40410: Critical Windows SMB Client Use-After-Free Privilege Escalation Flaw Patched
Microsoft has released an emergency security update to address a newly discovered elevation-of-privilege vulnerability in the Windows SMB Client, tracked as CVE-2026-40410. Rated Important with a...
Windows CLFS Zero-Day Gets Critical Patch: May 2026 Tuesday Fix Now Live
Microsoft's May 2026 Patch Tuesday brought a fix for CVE-2026-40407, a local privilege escalation vulnerability in the Windows Common Log File System (CLFS) driver. The flaw, rated Important, allows...