SecurityWeek ·EN-US News source Patch releasedMicrosoft Defender
Microsoft Patches Defender ‘RoguePlanet’ Vulnerability
CVE Tools coverage
Microsoft has issued patches for a vulnerability in Microsoft Defender, known as RoguePlanet, identified as CVE-2026-50656. The flaw allows attackers to escalate privileges due to a race condition. A proof-of-concept exploit was published by researcher Nightmare Eclipse on June 9, though it had limited reliability at the time. Microsoft addressed the issue through an automatic update to the Microsoft Malware Protection Engine, requiring no manual action from users. While there are currently no reports of exploitation, previous vulnerabilities from the same researcher have been used in attacks.