High severity7.8CISA KEVNVD Advisory· Published Apr 14, 2026· Updated Apr 23, 2026
CVE-2026-33825
CVE-2026-33825
Description
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:microsoft:defender_antimalware_platform:*:*:*:*:*:*:*:*Range: <4.18.26030.3011
Patches
Vulnerability mechanics
References
3- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33825nvdVendor Advisory
- www.huntress.com/blog/nightmare-eclipse-intrusionnvdThird Party Advisory
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
33- BlueHammer Vulnerability Exploited in Ransomware AttacksSecurityWeek · Jun 30, 2026
- CISA: Windows BlueHammer flaw now exploited by ransomware gangsBleepingComputer · Jun 30, 2026
- Microsoft working on a fix for RoguePlanet, a flaw that grants full PC controlMalwarebytes Labs · Jun 18, 2026
- Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in DevelopmentThe Hacker News · Jun 17, 2026
- Microsoft Working on Patch for ‘RoguePlanet’ Zero-DaySecurityWeek · Jun 17, 2026
- Nightmare-Eclipse Drops Yet Another Microsoft Exploit, RoguePlanetDark Reading · Jun 10, 2026
- New Windows Zero-Day Exploit ‘RoguePlanet’ ReleasedSecurityWeek · Jun 10, 2026
- Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-daysBleepingComputer · Jun 10, 2026
- Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated WindowsThe Hacker News · Jun 10, 2026
- New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to AttackersCyber Security News · Jun 10, 2026
- Patch Tuesday - June 2026Rapid7 Blog · Jun 9, 2026
- Microsoft’s June 2026 Patch Tuesday Addresses 198 CVEs ( CVE-2026-49160, CVE-2026-50507)Tenable Blog · Jun 9, 2026
- Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure BacklashSecurityWeek · Jun 3, 2026
- Microsoft MSRC Allegedly Dismissed Dependency Confusion Vulnerability, Claims ResearcherCyber Security News · Jun 2, 2026
- Microsoft's Zero-Day Legal Threats Spark BacklashDark Reading · Jun 1, 2026
- Critical Windows Netlogon RCE flaw now exploited in attacksBleepingComputer · Jun 1, 2026
- Microsoft Clarifies It Won’t Sue Security Researchers Amid Nightmare-Eclipse ControversyCyber Security News · Jun 1, 2026
- Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account RemovalThe Hacker News · May 28, 2026
- Microsoft Warns Public Release of Zero-Day Details Before Vendor CoordinationCyber Security News · May 28, 2026
- GitLab Suspends Windows Exploit Researcher Nightmare-Eclipse After GitHub BanCyber Security News · May 27, 2026
- Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498)Help Net Security · May 21, 2026
- Microsoft shares mitigation for YellowKey Windows zero-dayBleepingComputer · May 20, 2026
- Windows Zero-Day Barrage Continues After Patch TuesdayDark Reading · May 19, 2026
- New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC releasedBleepingComputer · May 17, 2026
- Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege EscalationThe Hacker News · May 14, 2026
- Windows BitLocker zero-day gives access to protected drives, PoC releasedBleepingComputer · May 13, 2026
- Exploits Turn Windows Defender Into Attacker ToolDark Reading · Apr 21, 2026
- 20th April – Threat Intelligence ReportCheck Point Research · Apr 20, 2026
- Microsoft Fixes Two Zero-Days in April Patch TuesdayInfosecurity Magazine · Apr 15, 2026
- Patch Tuesday - April 2026Rapid7 Blog · Apr 14, 2026
- Patch Tuesday, April 2026 EditionKrebs on Security · Apr 14, 2026
- Microsoft Patch Tuesday for April 2026 - Snort Rule and Prominent VulnerabilitiesCisco Talos Intelligence · Apr 14, 2026
- CISA Adds One Known Exploited Vulnerability to CatalogCISA Alerts