Skip to content

Microsoft Defender: Zero-Day Vulnerability RoguePlanet Enables SYSTEM-Level Privileges

The Point: A zero-day vulnerability in Microsoft Defender named RoguePlanet allows privilege escalation to SYSTEM level.

A zero-day security vulnerability in Microsoft Defender called RoguePlanet enables attackers to gain SYSTEM privileges on affected systems. The vulnerability affects the security solution itself and could lead to complete system compromise.

The RoguePlanet vulnerability was discovered in Microsoft Defender and allows attackers to gain SYSTEM rights through a privilege escalation weakness. This enables attackers to achieve the highest privilege level on a Windows system and assume complete control over the affected system.

For CISOs, this vulnerability represents a critical threat, as Microsoft Defender is deployed as a standard protection solution on many enterprise endpoints. A compromise of the security solution itself circumvents intended safeguards and could be leveraged for lateral movement within the network.

Affected organizations should prioritize deployment of security patches from Microsoft and monitor existing systems. Additional control measures such as application whitelisting, privilege access management, and increased logging granularity can reduce the risk until a patch becomes available.


Source: www.bleepingcomputer.com · Published June 10, 2026
Lumi AI News — AI-assisted curation in accordance with Article 50 EU AI Act. Paraphrase and classification through Lumi News Pipeline v1.6.5.

Share on: