New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day dubbed ...
Dark Reading

Google 'ImageRunner' Bug Enabled Privilege Escalation

A GCP Cloud Run known as "ImageRunner" would have enabled privilege escalation for threat actors who obtained low-level credentials had Google not addressed the vulnerability in January. Tenable on ...
Forbes

Privilege Escalation Threats: Fortifying Security With An Access Management Strategy

Geoffrey Mattson is the CEO of Xage Security, delivering zero-trust access and protection that’s easy to deploy, manage and use. In our increasingly digital world, companies managing information ...
CSOonline

New Kubernetes vulnerability allows privilege escalation in Windows

Editor’s note: This article, originally published on September 13, 2023, has been updated with new research on a similar vulnerability. The latest version of Kubernetes released last month includes ...

Privilege escalation in Linux: Local users can read foreign files

The vulnerability was known for years, fixed Thursday. Hours later, an exploit is available as the kernel team prepares countermeasures.
LinuxInsider

Dirty Frag Linux Vulnerability Raises New Root Access Risks

A newly disclosed Linux privilege escalation flaw dubbed "Dirty Frag" is raising concerns among security researchers who warn it could give attackers reliable root access across a wide range of ...
CSOonline

Intel patches high-severity CPU privilege escalation flaw

Intel has released microcode updates for several generations of mobile, desktop, and server CPUs to fix a vulnerability that can be exploited to trigger at the very least a denial-of-service condition ...