Tag

Miniplasma

All articles tagged with #miniplasma

cyber-security-news7 days ago•57 min saved

Public PoC Unleashes Windows 'MiniPlasma' Privilege-Escalation to SYSTEM

A publicly released PoC for the Windows 'MiniPlasma' zero-day privilege-escalation flaw lets unprivileged users gain SYSTEM privileges by exploiting the Cloud Filter driver’s HsmOsBlockPlaceholderAccess race condition and writing to the .DEFAULT hive. The bug traces to CVE-2020-17103 (originally patched in 2020 by Microsoft) but the PoC shows the flaw remains exploitable; Nightmare-Eclipse released the exploit on GitHub on May 13, 2026, after May Patch Tuesday, increasing risk as weaponized code circulates and affects all Windows versions. Organizations should monitor Microsoft’s response and apply patches when available.

via CyberSecurityNews|

#cyber-security-news #miniplasma #nightmare-eclipse

security8 days ago•1 min saved

MiniPlasma PoC Prompts SYSTEM Privilege Escalation on Windows

Security researcher Chaotic Eclipse released a MiniPlasma PoC that can grant SYSTEM privileges on patched Windows by abusing cldflt.sys (Cloud Files Mini Filter Driver); the flaw traces to CVE-2020-17103 and may be unpatched on many systems, suggesting broad impact across Windows versions. The PoC exploits a race condition and has shown reliability on Windows 11 May 2026 builds, though results vary by build (Insider Canary sometimes unaffected). Microsoft had addressed a related issue in 2025 (CVE-2025-62221).

via The Hacker News|

#cldfltsys #miniplasma #poc