Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
2648 articles · 173272 vulns · 37/41 feeds (7d)
← Back to list
7.8
CVE-2026-50656EXPLOITEDPATCHED
microsoft · malware_protection_engine

Microsoft Defender Elevation of Privilege Vulnerability

Description

Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet ".

Affected Products

VendorProductVersions
microsoftmalware_protection_engine1.1.0.0, 1.1.26060.3008

Also Affects

Downstream vendors/products affected by this vulnerability

VendorProductSourceConfidence
microsoftmicrosoft defendercert_advisory90%
microsoftmicrosoft malware protectioncert_advisory90%

References

  • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50656(vendor-advisory, patch)

Related News (9 articles)

Tier D
BleepingComputer3h ago
Microsoft patches RoguePlanet Defender zero-day vulnerability
→ No new info (linked only)
Tier D
The Hacker News21d ago
Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
→ No new info (linked only)
Tier B
CCCS Canada21d ago
Microsoft security advisory (AV26-607)
→ No new info (linked only)
Tier D
Help Net Security21d ago
Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)
→ No new info (linked only)
Tier B
BSI Advisories21d ago
[NEU] [UNGEPATCHT] [hoch] Microsoft Malware Protection Engine: Schwachstelle ermöglicht Privilegieneskalation
→ No new info (linked only)
Tier D
SecurityWeek21d ago
Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day
→ No new info (linked only)
Tier D
BleepingComputer22d ago
Microsoft working on Defender patch for RoguePlanet zero-day
→ No new info (linked only)
Tier C
VulDB22d ago
CVE-2026-50656 | Microsoft Malware Protection Engine link following
→ No new info (linked only)
Tier A
Microsoft MSRC22d ago
CVE-2026-50656 Microsoft Defender Elevation of Privilege Vulnerability
→ No new info (linked only)
CVSS 3.17.8 HIGH
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:U/RC:C
CISA KEV❌ No
Actively exploited✅ Yes
Patch available
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50656
CWECWE-59
PublishedJun 16, 2026
Last enriched3h agov5
Tags
RoguePlanetNightmare Eclipse
Trending Score92
Source articles9
Independent8
Info Completeness10/14
Missing: epss, kev, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

HIGHCVE-2026-33825EXPKEV
Microsoft Defender Elevation of Privilege Vulnerability
Trending: 61
HIGHCVE-2026-45659EXPKEV
Microsoft SharePoint Remote Code Execution Vulnerability
Trending: 59
HIGHCVE-2026-58295EXP
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Trending: 45
HIGHCVE-2026-58298EXP
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Trending: 45
CRITICALCVE-2026-58289EXP
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Trending: 44

Pin to Dashboard

Verification

State: verified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jun 16, 2026
Discovered by ZDM
Jun 16, 2026
Updated: description, exploitAvailable, activelyExploited, tags
Jun 16, 2026
Updated: affectedVersions, tags
Jun 17, 2026
Updated: description, cweIds
Jun 17, 2026
Actively Exploited
Jul 9, 2026
Exploit Available
Jul 9, 2026
Patch Available
Jul 9, 2026
Updated: affectedVersions
Jul 9, 2026

Version History

v5
Last enriched 3h ago
v5Tier D3h ago

Updated affected versions to include 1.1.26060.3008 and specified the patch available version.

affectedVersions
via BleepingComputer
v4Tier D21d ago

Updated description with technical details about the vulnerability and added CWE-22.

descriptioncweIds
via Help Net Security
v3Tier D22d ago

Added affected versions for Windows 10 and Windows 11, provided a more detailed description of the vulnerability, and included a new tag 'Nightmare Eclipse'.

affectedVersionstags
via BleepingComputer
v2Tier A22d ago

Added a description detailing the vulnerability as 'RoguePlanet', marked exploit availability and active exploitation as true, and added a new tag.

descriptionexploitAvailableactivelyExploitedtags
via Microsoft MSRC
v122d ago

Initial creation