{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreihd6tdb6cadpstdmzxydmfafszvf3hckzett25xfwzzdyguajelqa",
"uri": "at://did:plc:ei7bjz4znfapbhkcszctjjd6/app.bsky.feed.post/3mlqg3nejfiy2"
},
"coverImage": {
"$type": "blob",
"ref": {
"$link": "bafkreicx6fcjhd62iyhnd52gtmwokgn7x7k7w4lbntkm3aiakflzpplnhi"
},
"mimeType": "image/jpeg",
"size": 140849
},
"path": "/article/4170790/microsofts-new-ai-system-finds-16-windows-flaws-including-four-critical-rces-2.html",
"publishedAt": "2026-05-13T12:26:26.000Z",
"site": "https://www.computerworld.com",
"tags": [
"Endpoint Protection, Security, Windows Security",
"post",
"Project Glasswing",
"CSO"
],
"textContent": "Microsoft has unveiled a new AI-driven vulnerability discovery system that identified 16 previously unknown Windows vulnerabilities, including four critical remote code execution flaws, in what security analysts say could mark a major shift in how software vulnerabilities are discovered and remediated.\n\nThe system, codenamed MDASH, was developed by Microsoft’s Autonomous Code Security team alongside the Windows Attack Research and Protection group.\n\nThe platform will enter private preview for enterprise customers next month, Microsoft said in a blog post announcing the system.\n\nThe vulnerabilities were patched as part of Microsoft’s May 12 Patch Tuesday release.\n\n“Cyber defenders are facing an increasingly asymmetric battle,” Microsoft added in the blog post. “Attackers are using AI to increase the speed, scale, and sophistication of attacks.”\n\n## Critical Windows components affected\n\nThe four critical vulnerabilities affected core Windows components broadly deployed across enterprise environments, Microsoft said in the blog.\n\nAmong them was CVE-2026-33827, a remote unauthenticated use-after-free flaw in the Windows IPv4 stack reachable through specially crafted packets carrying the Strict Source and Record Route option, Microsoft said.\n\nAnother flaw, CVE-2026-33824, involved a pre-authentication double-free issue in the IKEEXT service affecting RRAS VPN, DirectAccess, and Always-On VPN deployments.\n\nTwo additional critical flaws affected Netlogon and the Windows DNS Client, both carrying CVSS scores of 9.8.\n\nThe remaining 12 vulnerabilities rated “Important” included denial-of-service, privilege-escalation, information disclosure, and security feature bypass flaws affecting components such as tcpip.sys, http.sys, ikeext.dll, and telnet.exe, according to Microsoft.\n\n## How MDASH orchestrates AI agents\n\nAccording to Microsoft, MDASH orchestrates more than 100 specialized AI agents across multiple frontier and distilled models, with each agent assigned to a different stage of the vulnerability discovery pipeline.\n\nSome agents scan source code for potential flaws, others validate whether findings are genuine, and another stage attempts to construct triggering inputs capable of reproducing the issue before the finding reaches a human engineer for review.\n\n“The model is one input. The system is the product,” Taesoo Kim, Microsoft vice president for agentic security, wrote in the blog.\n\nMicrosoft said the architecture was intentionally designed to remain largely model-agnostic, allowing the company to swap underlying AI models without rebuilding the broader orchestration pipeline.\n\nThat detail matters because MDASH arrives only weeks after Microsoft announced Project Glasswing, a partnership involving Anthropic and others to evaluate AI-driven vulnerability discovery using Anthropic’s Claude Mythos Preview model.\n\n“Microsoft is now operating as platform owner, security vendor, AI infrastructure player, OpenAI partner, Mythos integrator, and agentic security supplier,” said Sanchit Vir Gogia, chief analyst at Greyhound Research. “That is a formidable position. It is also a concentration of influence that security leaders must examine with clear eyes.”\n\n## AI vs AI vulnerability race\n\nThe announcement also highlights growing concern that AI-driven vulnerability discovery could accelerate offensive operations as well as defensive research.\n\nAnthropic has previously said its Mythos Preview model identified thousands of high-severity vulnerabilities, including a decades-old OpenBSD flaw and a long-undetected FFmpeg issue that traditional fuzzing tools failed to uncover despite millions of attempts.\n\n“We’ve entered an AI-versus-AI vulnerability discovery race,” said Sunil Varkey, advisor at Beagle Security. “The winners won’t be the organizations with the best static scanners anymore. They’ll be the ones who can run these agentic systems fastest against their own code and remediate at machine speed.”\n\nVarkey said enterprises should pursue early access to systems such as MDASH where possible rather than waiting for broader commercial availability.\n\n“Early access isn’t just nice-to-have,” he said. “It’s becoming a defensive necessity in the AI era.”\n\nFor CISOs, the broader implication may be that vulnerability management is shifting from periodic scanning toward continuous, AI-assisted discovery and remediation.\n\n“The future belongs to security teams that can find, validate, contain, and fix in one governed motion,” Gogia said.\n\n## Benchmarks show progress, but analysts urge caution\n\nTo support its claims, Microsoft published benchmark results showing MDASH identified all 21 deliberately planted vulnerabilities in an internal Windows test driver without false positives. The company also said the system successfully recovered nearly all historical Microsoft Security Response Center cases tested against older Windows component snapshots.\n\nOn the public CyberGym benchmark for vulnerability reproduction tasks, Microsoft said MDASH achieved a score of 88.45%, topping the public leaderboard at publication time.\n\nGogia said the results show the category is maturing but warned against treating benchmark scores as direct proof of enterprise value.\n\n“CyberGym is a signal, not a buying decision,” he said. “The machinery around the model is beginning to resemble a serious security research workflow.”\n\nHe added that many enterprises still lack the governance maturity required to operationalize machine-generated vulnerability discovery effectively.\n\n“Discovery without remediation discipline is theatre,” Gogia said. “It produces dashboards, not resilience.”\n\n_This article originally appeared in CSO._",
"title": "Microsoft’s new AI system finds 16 Windows flaws, including four critical RCEs"
}