Microsoft has confirmed it is developing a fix for the Microsoft Defender zero-day vulnerability publicly known as RoguePlanet, now tracked as CVE-2026-50656. The flaw affects fully patched Windows 10 and Windows 11 systems and can let attackers spawn SYSTEM-level command prompts through a race condition in the Microsoft Malware Protection Engine. #RoguePlanet #CVE-2026-50656 #MicrosoftDefender #NightmareEclipse #MicrosoftMalwareProtectionEngine
Keypoints
- Microsoft is working on a security patch for RoguePlanet.
- RoguePlanet is tracked as CVE-2026-50656.
- The flaw affects fully patched Windows 10 and Windows 11 devices.
- It can grant SYSTEM privileges through a Microsoft Defender race condition.
- Nightmare Eclipse shared a proof-of-concept exploit in a self-hosted repository.