Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet ".
| Vendor | Product | Versions |
|---|---|---|
| microsoft | malware_protection_engine | 1.1.0.0, 1.1.26060.3008 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| microsoft | microsoft defender | cert_advisory | 90% |
| microsoft | microsoft malware protection | cert_advisory | 90% |
Updated affected versions to include 1.1.26060.3008 and specified the patch available version.
Updated description with technical details about the vulnerability and added CWE-22.
Added affected versions for Windows 10 and Windows 11, provided a more detailed description of the vulnerability, and included a new tag 'Nightmare Eclipse'.
Added a description detailing the vulnerability as 'RoguePlanet', marked exploit availability and active exploitation as true, and added a new tag.
Initial creation