A functional proof-of-concept exploit for an unpatched Windows local privilege escalation vulnerability named BlueHammer has been publicly leaked on GitHub. The exploit, initially buggy, has been refined by researchers to work on patched Windows 10, 11, and Windows Server systems. No official patch, CVSS score, or workaround from Microsoft is provided in the article.
A buggy but functional proof-of-concept (PoC) exploit for an unpatched Windows local privilege escalation vulnerability dubbed BlueHammer has been published on GitHub by someone who goes by the handle Chaotic Eclipse and Nightmare Eclipse. Several security researchers have fixed the bugs in the exploit and made it work on patched Windows 10, 11, and Windows Server systems, and the question now is whether Microsoft is planning or working on a fix. The BlueHammer PoC exploit … More → The post BlueHammer: Windows zero-day exploit leaked appeared first on Help Net Security .