logo

Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

ID: 54f7cfc0-13ca-5d34-bf7b-ecf99869f298

STIX ID: report--54f7cfc0-13ca-5d34-bf7b-ecf99869f298

Feed Name: Ars Technica Security (category)

Threat Score
85/100

Date Published: 2026-06-09

Date Updated: 2026-06-10

Author: Dan Goodin

...
...

Nightmare Eclipse disclosed multiple Windows vulnerabilities — including MiniPlasma (a regression tied to CVE-2020-17103), a BitLocker bypass called YellowKey, local escalation flaws (RedSun, BlueHammer), and published exploit code targeting Windows Defender — some of which remain unpatched or only mitigated manually; two were confirmed as zero-days in Microsoft’s recent patch batch.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.