@i0null@infosec.exchange
·
May 21, 2026
EVERYONE GETS AN LPE
Windows:
#BlueHammer (#CVE_2026_33825)
#RedSun (#CVE_2026_41091)
#UnDefend (#CVE_2026_45498)
#WindowsInstaller (#CVE_2026_27910):
Linux:
#CopyFail (#CVE_2026_31431)
#SSHKeysignPwn (#CVE_2026_46333)
FreeBSD:
#FatGid (#CVE_2026_45250)
#ExecveBug (#CVE_2026_7270)
175
32
167
@h4ckernews@mastodon.social
·
Apr 11, 2026
Hacker News
@h4ckernews@mastodon.social
Unofficial Hacker News Bot, posting Top 10 stories.
mastodon.social
BlueHammer abuses Windows Defender's update process to gain SYSTEM access
https://hackingpassion.com/bluehammer-windows-defender-zero-day/
#HackerNews #BlueHammer #WindowsDefender #ZeroDay #Cybersecurity #Vulnerability #HackingNews
12
0
18
Recently this popped up, #Bluehammer a #Windows exploit that exploits Windows Defender for a local privilege elevation
From user to system level..
It triggers a Defender scan and locks that after, so it can access a certain database that is been backed up while Defender scans to gain system level access
GitHub now gives a warning for the repo it seems:
https://github.com/Nightmare-Eclipse/BlueHammer
Just be careful
8
5
8
You've seen all posts