orinimron123/cve-2026-40369-exploit — explained in plain English
Analysis updated 2026-05-18
Study a real Windows privilege escalation bug for security research or defensive patching.
Test whether a Windows 11 24H2 through 25H2 system is vulnerable to this specific kernel write bug.
Learn how missing bounds checks in a system information query can be turned into a kernel memory write primitive.
| orinimron123/cve-2026-40369-exploit | felixwindisch/lodofgaussians | raphaelhard/auto-2026 | |
|---|---|---|---|
| Stars | 32 | 32 | 32 |
| Language | C++ | C++ | C++ |
| Setup difficulty | hard | hard | easy |
| Complexity | 5/5 | 5/5 | 1/5 |
| Audience | researcher | researcher | general |
Figures from each repo's GitHub metadata at analysis time.
Requires a matching vulnerable Windows 11 build and C++ toolchain to compile and run the proof of concept.
This repository contains exploit code and a technical write-up for a Windows kernel security vulnerability identified as CVE-2026-40369. The vulnerability exists in a core Windows system component and allows an unprivileged process, meaning one running with normal user permissions and no special access, to write to arbitrary locations in the operating system's kernel memory. The kernel is the most privileged part of the operating system, so the ability to write to it can be used to escalate privileges and take full control of the machine. The write-up explains that the bug exists in how Windows handles a specific type of system information query. When called in a particular way, the code skips a safety check and attempts to increment values at a caller-supplied memory address without validating that the address is safe to write. The repository claims the vulnerability affects Windows 11 versions 24H2 through 25H2, can be triggered from within browser sandboxes, and works with 100 percent reliability. It is written in C++ and is intended for security researchers studying privilege escalation on Windows.
Proof-of-concept exploit and write-up for a Windows kernel vulnerability (CVE-2026-40369) that lets a normal user process write to kernel memory and escalate privileges.
Mainly C++. The stack also includes C++, Windows Kernel.
Setup difficulty is rated hard, with roughly 1h+ to a first successful run.
Mainly researcher.
This repo across BitVibe Labs
Verify against the repo before relying on details.