Microsoft scrambles to patch a Defender safety flaw known as RoguePlanet

Every week in the past, the safety researcher who goes by “Nightmare Eclipse” revealed details about RoguePlanet, a zero-day safety vulnerability in Microsoft’s Defender safety program. The vulnerability, formally designated CVE-2026-50656, will be exploited by hackers to realize full entry to your laptop.

The vulnerability exists in totally patched Home windows 10 and Home windows 11 gadgets and permits attackers to generate command prompts with system privileges through a race situation in Microsoft Defender. The safety professional revealed a proof-of-concept exploit in a self-hosted Git repository and claimed that Microsoft had beforehand focused and eliminated its exploit-hosting repositories on GitHub and GitLab.

The safety professional writes: “The exploit is a race situation, so it’s a hit and miss. I’ve managed to get a 100% success price on some machines whereas it struggled to work on others.”

In an announcement to BleepingComputer, a Microsoft spokesperson defined that the corporate is engaged on growing a safety patch for RoguePlanet, which can hopefully be launched to the general public quickly:

Microsoft is conscious of an elevation of privilege within the Microsoft Malware Safety Engine in Microsoft Defender publicly known as ‘RoguePlanet.’

We’re working to offer a top quality safety replace that addresses this vulnerability. We’ll present info on this CVE when the replace is offered.

Not too long ago, the identical safety researcher has revealed details about a complete vary of safety vulnerabilities in Home windows and its associated software program, together with BlueHammer, RedSun, MiniPlasma, and YellowKey.