MiniPlasma: new zero-day exploit elevates privileges in Windows eleven

Published on May 20, 2026 | Translated from Spanish

Researcher Chaotic Eclipse has published an experimental exploit called MiniPlasma on GitHub. This code takes advantage of a zero-day vulnerability in Windows 11, even on updated systems, to grant the attacker SYSTEM privileges. Microsoft has not yet fixed the flaw, which has been detected since 2020. The author includes both the source code and the compiled file.

Windows 11 desktop screen showing command prompt window executing MiniPlasma exploit, green text scrolling rapidly while system privilege escalation process is demonstrated, SYSTEM token being extracted from kernel memory, glowing red alert icon indicating zero-day vulnerability active, metallic laptop chassis with cooling vents, motherboard components visible through translucent case, cyberpunk technical illustration style, dramatic blue and red lighting, photorealistic hardware details, code lines morphing into digital chains breaking apart

Technical details of the vulnerability and the exploit 🛡️

MiniPlasma is the latest in a series of exploits published by Chaotic Eclipse, following BlueHammer in April. The vulnerability resides in a Windows kernel component that allows privilege escalation without authentication. The exploit executes code in the system context, bypassing current security protections. With the source code available, other researchers can analyze the flaw and develop defenses, although it also facilitates malicious use.

Microsoft: the perfect patch for 2025 (or 2030) ⏳

As tradition dictates, Microsoft seems to wait for the exploit to circulate for a few years before considering a patch. Meanwhile, Chaotic Eclipse continues to give away tools for anyone to play system administrator. If your Windows 11 suddenly feels insecure, don't worry: the fix will arrive just in time for the next major update, perhaps when you are already using Windows 12.