Microsoft Defender BlueHammer (CVE-2026-33825) Patch Tuesday update
Security Patch Release
Summary
Hide ▲
Show ▼
Microsoft shipped a Patch Tuesday fix for CVE-2026-33825, a Microsoft Defender local-privilege-escalation flaw that can lead to SYSTEM access. The update narrows exposure on affected Windows 10, Windows 11, and Windows Server systems when Defender is enabled. It matters because a released exploit showed the issue was already actionable before the fix landed.
Cases
Related Happenings
Microsoft Defender BlueHammer (CVE-2026-33825) ransomware exploitation wave
Exploitation Wave
H score41
First: 30.06.2026 11:53
Last: 30.06.2026 11:53
Sources 1
How related:
CISA has now also flagged it as exploited in ransomware campaigns in a Monday update to its KEV Catalog.
About this happening:
CISA has flagged **BlueHammer (CVE-2026-33825)** as exploited in **ransomware campaigns**, expanding the risk to **Windows devices** exposed to privilege escalation. The flaw in *...
Microsoft Defender BlueHammer (CVE-2026-33825) ransomware exploitation wave
Exploitation WaveHow related: CISA has now also flagged it as exploited in ransomware campaigns in a Monday update to its KEV Catalog.
About this happening: CISA has flagged **BlueHammer (CVE-2026-33825)** as exploited in **ransomware campaigns**, expanding the risk to **Windows devices** exposed to privilege escalation. The flaw in *...
Microsoft releases RoguePlanet Defender security update for CVE-2026-50656
Security Patch Release
H score32
First: 17.06.2026 20:36
Last: 17.06.2026 20:36
Sources 1
About this happening:
**Microsoft** has released a **security update** for **CVE-2026-50656**, remediating **RoguePlanet** in the **Microsoft Malware Protection Engine (mpengine.dll)**. The flaw is a *...
Microsoft releases RoguePlanet Defender security update for CVE-2026-50656
Security Patch ReleaseAbout this happening: **Microsoft** has released a **security update** for **CVE-2026-50656**, remediating **RoguePlanet** in the **Microsoft Malware Protection Engine (mpengine.dll)**. The flaw is a *...
Latest development: 09.07.2026 11:48
Microsoft released security updates for CVE-2026-50656, remediating the RoguePlanet privilege-escalation flaw in Microsoft Malware Protection Engine (mpengine.dll) with version 1.1.26060.3008 and additional defense-in-depth updates. Microsoft said no customer action is required to install the update.
Microsoft YellowKey patch release (CVE-2026-45585)
Security Patch Release
H score20
First: 11.06.2026 20:43
Last: 11.06.2026 20:43
Sources 1
About this happening:
Microsoft's **Patch Tuesday** updates this week patched **YellowKey (CVE-2026-45585)**, closing a **Windows BitLocker** bypass that could expose protected volumes. The vendor rele...
Microsoft YellowKey patch release (CVE-2026-45585)
Security Patch ReleaseAbout this happening: Microsoft's **Patch Tuesday** updates this week patched **YellowKey (CVE-2026-45585)**, closing a **Windows BitLocker** bypass that could expose protected volumes. The vendor rele...
Microsoft Windows June 2026 Patch Tuesday zero-day fixes (multiple vulnerabilities)
Security Patch Release
H score40
First: 10.06.2026 12:57
Last: 10.06.2026 12:57
Sources 1
About this happening:
**Microsoft**'s **June 2026 Patch Tuesday** fixed **three Windows zero-days** that could yield **SYSTEM** access or bypass **BitLocker** on vulnerable systems.
Microsoft Windows June 2026 Patch Tuesday zero-day fixes (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **Microsoft**'s **June 2026 Patch Tuesday** fixed **three Windows zero-days** that could yield **SYSTEM** access or bypass **BitLocker** on vulnerable systems.
Microsoft June 2026 Patch Tuesday GreenPlasma and YellowKey fixes
Security Patch Release
H score15
First: 10.06.2026 02:11
Last: 10.06.2026 02:11
Sources 1
About this happening:
**Microsoft** released **June 2026 Patch Tuesday** updates that fixed the **GreenPlasma** and **YellowKey** flaws, closing two previously disclosed issues in the Windows ecosystem...
Microsoft June 2026 Patch Tuesday GreenPlasma and YellowKey fixes
Security Patch ReleaseAbout this happening: **Microsoft** released **June 2026 Patch Tuesday** updates that fixed the **GreenPlasma** and **YellowKey** flaws, closing two previously disclosed issues in the Windows ecosystem...
Timeline
-
16.04.2026 23:19 3 articles · 2mo ago
Microsoft ships Patch Tuesday fix for CVE-2026-33825
Mitigation Patch UpdateMicrosoft fixed CVE-2026-33825 as part of this month's Patch Tuesday security updates, closing a Microsoft Defender local privilege escalation flaw that could grant SYSTEM privileges on Windows 10, Windows 11, and Windows Server when Windows Defender is enabled.
Show sources
- New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges — www.bleepingcomputer.com — 16.04.2026 23:19
- CISA orders feds to patch BlueHammer flaw exploited as zero-day — www.bleepingcomputer.com — 23.04.2026 14:05
- CISA: Windows BlueHammer flaw now exploited by ransomware gangs — www.bleepingcomputer.com — 30.06.2026 11:53