https://winbuzzer.com/2026/05/18/new-windows-miniplasma-zero-day-exploit-gives-syst-xcxwbn/
MiniPlasma is a newly released proof-of-concept exploit that reportedly turns a standard Windows user into SYSTEM on fully patched Windows 11 systems, reviving doubts about a flaw Microsoft marked fixed in 2020.
#Cybersecurity #MiniPlasma #Microsoft #Windows11 #CVE202017103 #ChaoticEclipse #MicrosoftWindows #Windows11
MiniPlasma
MiniPlasma는 6년 전 Google Project Zero가 발견해 Microsoft에 보고한 CVE-2020-17103 취약점이 여전히 Windows의 cldflt.sys 드라이버에 존재함을 재조명합니다. 해당 취약점은 권한 상승(LPE) 문제로, 원본 PoC를 활용해 SYSTEM 권한 쉘을 생성하는 데 성공했으며, 모든 Windows 버전에 영향을 미치는 것으로 보입니다. Microsoft가 이 취약점을 제대로 패치하지 않았거나 패치를 되돌린 것으로 추정됩니다.
https://github.com/Nightmare-Eclipse/MiniPlasma
#windows #security #exploit #cve202017103 #privilegeescalation
CVE-2020-17103 was apparently not patched or the patch was reversed, regardless this the PoC for an LPE in cldflt.sys - Nightmare-Eclipse/MiniPlasma
Tarnkappe.info
Winbuzzer
sayzard