Microsoft has started rolling out patches for the Defender vulnerability RoguePlanet, tracked as CVE-2026-50656, about a month after a public zero-day exploit was released. The flaw used a race condition to escalate privileges to System, and while no exploitation has been reported, the researcher behind it has already uncovered additional Defender issues. #RoguePlanet #CVE-2026-50656 #MicrosoftDefender #NightmareEclipse
Keypoints
- Microsoft is patching the Defender flaw known as RoguePlanet.
- CVE-2026-50656 can be used to escalate privileges to System.
- A public PoC exploit was released by Nightmare Eclipse on June 9.
- Microsoft says the fix was delivered automatically through the Malware Protection Engine.
- The researcher has since found new Defender issues involving memory leaks and quarantined files.
Read More: https://www.securityweek.com/microsoft-patches-defender-rogueplanet-vulnerability/