Researchers from MDSec have disclosed a newly patched Windows elevation-of-privilege vulnerability dubbed “RegPwn,” which allowed attackers to escalate from a low-privileged user to full SYSTEM access. The flaw, tracked as CVE-2026-24291, stems from how Windows manages registry configurations tied to its built-in Accessibility features. Vulnerability Overview Windows Accessibility tools such as Narrator and the On-Screen […] The post Critical ‘RegPwn’ Vulnerability Lets Attackers Gain SYSTEM Access on Windows appeared first on Cyber Security News.