New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day dubbed ...
SiliconANGLE

Mandiant uncovers critical privilege escalation vulnerability in Azure Kubernetes service

Google LLC’s Mandiant has published details of a critical privilege escalation vulnerability found in Microsoft Corp.’s Azure Kubernetes service that, though patched by Microsoft, could have allowed ...

Privilege escalation in Linux: Local users can read foreign files

The vulnerability was known for years, fixed Thursday. Hours later, an exploit is available as the kernel team prepares ...
Forbes

Privilege Escalation Threats: Fortifying Security With An Access Management Strategy

Geoffrey Mattson is the CEO of Xage Security, delivering zero-trust access and protection that’s easy to deploy, manage and use. In our increasingly digital world, companies managing information ...
Dark Reading

Google 'ImageRunner' Bug Enabled Privilege Escalation

A GCP Cloud Run known as "ImageRunner" would have enabled privilege escalation for threat actors who obtained low-level credentials had Google not addressed the vulnerability in January. Tenable on ...
CSOonline

New Kubernetes vulnerability allows privilege escalation in Windows

Editor’s note: This article, originally published on September 13, 2023, has been updated with new research on a similar vulnerability. The latest version of Kubernetes released last month includes ...
LinuxInsider

Dirty Frag Linux Vulnerability Raises New Root Access Risks

A newly disclosed Linux privilege escalation flaw dubbed "Dirty Frag" is raising concerns among security researchers who warn ...
CSOonline

Intel patches high-severity CPU privilege escalation flaw

Intel has released microcode updates for several generations of mobile, desktop, and server CPUs to fix a vulnerability that can be exploited to trigger at the very least a denial-of-service condition ...