Microsoft fixes critical security vulnerabilities in Windows

On Tuesday, June 11, 2026, Microsoft released several critical security updates to address three serious vulnerabilities in its Windows operating systems. These updates are particularly important as they allow attackers to gain SYSTEM rights on fully patched Windows systems. The vulnerabilities have been identified as YellowKey, GreenPlasma, and MiniPlasma and affect a variety of Windows versions.

The first two vulnerabilities, YellowKey and GreenPlasma, allow attackers to gain deeper system privileges, potentially leading to full access to the system. This type of access can enable attackers to install malware, steal data, or even take over the entire system. Microsoft has emphasized that the vulnerabilities were actively exploited, highlighting the urgency of the updates.

The third vulnerability, MiniPlasma, affects the BitLocker encryption integrated into Windows. This vulnerability could allow attackers to access BitLocker-protected drives, posing a significant risk to data security. BitLocker is an important security feature designed to protect data on hard drives from unauthorized access.

Details on the Security Updates

Microsoft has provided detailed information on the patched vulnerabilities in its security bulletin. The updates are available for all supported Windows versions, including Windows 10 and Windows 11. Users are strongly urged to update their systems immediately to protect against potential attacks.

The security updates are part of Microsoft's monthly Patch Tuesday, which regularly addresses vulnerabilities in its products. Microsoft has previously emphasized that the security of its users is a top priority and that the company continuously works to identify and address potential threats.

The discovery of these vulnerabilities and the subsequent patches are the result of intensive security research and analysis. Microsoft works closely with security researchers and the community to detect and combat new threats. The swift response to these critical vulnerabilities demonstrates the company's commitment to the security of its products.

Users who have not yet updated their systems should do so immediately to protect themselves from the potential risks associated with these vulnerabilities. Microsoft has also recommended taking additional security measures to further enhance the security of their systems.

The security updates are available immediately and can be downloaded and installed through the Windows Update feature. Microsoft has also published a detailed guide on how users can update their systems to ensure they receive the latest security updates.