Microsoft is having a tough time since a Twitter user reported a major vulnerability in windows10/11. As per the reports, this vulnerability exposes admin passwords to local users which can be considered as an important security flaw of the OS. Microsoft has confirmed that they are aware of the issue through an executive summary on its Security Vulnerability page.
Microsoft says “this new vulnerability is a result of inadequate protection of access control lists on several system files, which include the SAM database. An unauthorized person could use the vulnerability to run custom code that takes advantage of higher system privileges and could add, change or delete user data”
The vulnerability is found in systems running build 1809 of Windows 10 and some versions of Windows 11. Microsoft concluded that they would update customers as they learn more.