Windows Zero-Day Flaw Grants System Privileges

A new zero-day vulnerability in Windows, MiniPlasma, allows attackers to gain full system privileges on even the most up-to-date machines.

A security researcher, Chaotic Eclipse, has publicly released a proof-of-concept for a new zero-day vulnerability in Microsoft Windows. Codenamed MiniPlasma, the flaw allows for privilege escalation and impacts the Windows Cloud Files Mini Filter Driver (cldflt.sys). This disclosure follows the researcher's previous discoveries of other Windows flaws, known as YellowKey and GreenPlasma. The release of a working exploit demonstrates a practical method for attackers to leverage this previously unknown security weakness in the operating system.

The primary concern surrounding MiniPlasma is its ability to affect fully patched Windows systems, rendering current security updates ineffective against this specific threat. An attacker who successfully exploits this vulnerability can gain SYSTEM-level privileges, the highest level of administrative control on a Windows device. This complete control allows a malicious actor to bypass security defenses, install persistent malware, and steal sensitive information. The public availability of the proof-of-concept significantly raises the likelihood of this vulnerability being incorporated into active attacks, posing a serious risk to all organizations using Windows.

This zero-day affects fully patched Windows systems, allowing attackers to gain complete system control. The public proof-of-concept increases the immediate risk of exploitation before a patch is available.

An exploited system could lead to a full data breach, ransomware deployment, or complete network compromise. The vulnerability bypasses existing patches, leaving business infrastructure exposed until Microsoft issues a fix.