Windows 10 Agere modem drivers actively exploited elevation-of-privileges privilege-escalation flaw
Vulnerability
Summary
Hide ▲
Show ▼
An actively exploited elevation-of-privileges flaw in built-in Agere modem drivers exposed Windows 10 systems to privilege escalation risk until KB5073724 was installed. Microsoft said the issue was one of the three zero-days fixed in the January 2026 update cycle, confirming active abuse before patching. The fix removes the vulnerable modem drivers, so devices that depend on that hardware may lose modem functionality after remediation.
Related Happenings
Microsoft Windows Update installation failures on upgraded Windows 11 PCs
Service Disruption
H score1
First: 10.06.2026 14:33
Last: 10.06.2026 14:33
Sources 1
About this happening:
**Microsoft Windows Update** is failing on a **small percentage of upgraded Windows 11 PCs**, blocking **June 2026 cumulative updates** and producing **0x80073712** or **0x800f099...
Microsoft Windows Update installation failures on upgraded Windows 11 PCs
Service DisruptionAbout this happening: **Microsoft Windows Update** is failing on a **small percentage of upgraded Windows 11 PCs**, blocking **June 2026 cumulative updates** and producing **0x80073712** or **0x800f099...
Microsoft Windows Server 2016 domain controller discovery failure after KB5087537
Service Disruption
H score0
First: 26.05.2026 10:41
Last: 26.05.2026 10:41
Sources 1
About this happening:
Microsoft confirmed a **known issue** in **Windows Server 2016** after **KB5087537** that can prevent **domain controller discovery**, disrupting administrative operations and app...
Microsoft Windows Server 2016 domain controller discovery failure after KB5087537
Service DisruptionAbout this happening: Microsoft confirmed a **known issue** in **Windows Server 2016** after **KB5087537** that can prevent **domain controller discovery**, disrupting administrative operations and app...
Windows cldflt.sys MiniPlasma privilege escalation zero-day privilege-escalation flaw
Vulnerability
H score52
First: 18.05.2026 07:59
Last: 18.05.2026 07:59
Sources 1
About this happening:
**MiniPlasma** is a **Windows privilege-escalation zero-day** in **cldflt.sys** that can give attackers **SYSTEM** privileges on **fully patched Windows systems**. The flaw affect...
Windows cldflt.sys MiniPlasma privilege escalation zero-day privilege-escalation flaw
VulnerabilityAbout this happening: **MiniPlasma** is a **Windows privilege-escalation zero-day** in **cldflt.sys** that can give attackers **SYSTEM** privileges on **fully patched Windows systems**. The flaw affect...
Microsoft adds Cloud-Initiated Driver Recovery for Windows Update driver rollbacks
Security Tool/Service
H score10
First: 15.05.2026 15:29
Last: 15.05.2026 15:29
Sources 1
About this happening:
Microsoft is adding **Cloud-Initiated Driver Recovery** to **Windows Update**, giving it a remote rollback control for **problematic Windows drivers**. The capability reduces how...
Microsoft adds Cloud-Initiated Driver Recovery for Windows Update driver rollbacks
Security Tool/ServiceAbout this happening: Microsoft is adding **Cloud-Initiated Driver Recovery** to **Windows Update**, giving it a remote rollback control for **problematic Windows drivers**. The capability reduces how...
Microsoft Windows Autopatch fix for EU restricted driver update deployment bug
Security Tool/Service
H score11
First: 13.05.2026 17:36
Last: 13.05.2026 17:36
Sources 1
About this happening:
**Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...
Microsoft Windows Autopatch fix for EU restricted driver update deployment bug
Security Tool/ServiceAbout this happening: **Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...
Timeline
-
13.01.2026 20:56 2 articles · 5mo ago
KB5073724 patch release for Windows 10
Mitigation Patch UpdateMicrosoft released KB5073724 for Windows 10 and Windows 10 Enterprise LTSC 2021 as part of January 2026 Patch Tuesday, fixing 114 vulnerabilities including 3 zero-day flaws, an actively exploited elevation-of-privileges issue in built-in Agere modem drivers, a WinSqlite3.dll flaw, and updates for expiring Secure Boot certificates; after installation, Windows 10 moves to build 19045.6809 and Windows 10 Enterprise LTSC 2021 moves to build 19044.6809, and affected systems also begin a phased rollout of new Secure Boot certificates.
Show sources
- Microsoft releases Windows 10 KB5073724 extended security update — www.bleepingcomputer.com — 13.01.2026 20:56
- Microsoft releases Windows 10 KB5073724 extended security update — www.bleepingcomputer.com — 13.01.2026 20:56