Security Researcher Releases Exploit for Unpatched Windows 11 Vulnerability

• May 18, 2026

A cybersecurity researcher known as Chaotic Eclipse has released a publicly available exploit that targets a critical security weakness in Windows 11. The exploit, named MiniPlasma, grants SYSTEM-level privileges, providing the highest level of control over affected systems. This vulnerability reportedly remains unaddressed by Microsoft despite being initially identified in 2020.

Exploit Demonstrates Persistent Security Gap in Windows 11

The vulnerability exploited with MiniPlasma allows an attacker to escalate privileges on fully updated Windows 11 installations. By achieving SYSTEM-level access, malicious actors could execute arbitrary code with full control over the operating system, potentially compromising user data and system integrity.

Chaotic Eclipse, who shared the exploit’s source code and compiled binary on GitHub, describes the release as an experimental demonstration rather than a weaponized tool, emphasizing that the flaw has remained unpatched for several years. The disclosure highlights ongoing challenges in addressing certain security gaps within Microsoft’s operating system architecture.

While Microsoft has not officially commented on this specific exploit, the company routinely advises users to install security updates promptly to mitigate risks. However, the persistence of this particular weakness raises concerns about the effectiveness of current patching efforts in fully protecting Windows 11 users.

Security experts monitoring the development expressed concerns that publishing such exploits publicly can increase risks if threat actors adopt the method to breach systems at scale. Nonetheless, responsible disclosure and transparency also pressure vendors to prioritize patching vulnerable components.

Windows remains a prime target for security research due to its widespread adoption, making the maintenance of a robust defense against zero-day exploits essential. This incident underlines the need for continuous vigilance and innovation in protective technologies to safeguard users from potential exploitation.

For Windows 11 users and administrators, the release of the MiniPlasma exploit serves as a reminder to exercise caution, maintain best security practices, and stay alert for forthcoming updates that may address this prolonged vulnerability.

A cybersecurity expert has published an exploit enabling full SYSTEM access on updated Windows 11, targeting a flaw unresolved since 2020.