A critical vulnerability in the Windows kernel, tracked as CVE-2026-40369, has been publicly disclosed, allowing any unprivileged attacker to escalate directly to NT AUTHORITY\SYSTEM with complete determinism. The flaw was discovered by researcher Ori Nimron, who built a fully working exploit intended for Pwn2Own Berlin 2026, but was turned away due to venue capacity constraints and subsequently publicly dropped […]
The post Windows Kernel Flaw Lets Attackers Modify Memory Counters appeared first on Cyber Security News.