Publicly-reported instances of Exploitation for Priv-Esc bypassing endpoint security products. Maintained on the same basis for every technique in the Index.
| Product | Entries | High-confidence | Most recent |
|---|---|---|---|
| Microsoft | 9 | 8 | 2026-05-22 |
| Palo Alto Networks | 2 | 2 | 2026-06-01 |
| Trellix | 2 | 2 | 2024-01-09 |
| 2 | 2 | 2026-05-22 | |
| ESET | 2 | 2 | 2024-07-31 |
| Elastic | 2 | 2 | 2026-05-28 |
| Trend Micro | 2 | 2 | 2025-08-05 |
| Apple | 2 | 2 | 2024-05-11 |
| Undisclosed security vendor | 1 | 0 | 2024-02-28 |
| ConnectWise | 1 | 1 | 2024-03-01 |
| Ivanti | 1 | 1 | 2024-02-28 |
| Fortinet | 1 | 1 | 2024-10-24 |
| Comodo Security | 1 | 1 | 2026-03-16 |
| F5 | 1 | 1 | 2026-05-22 |
| CrowdStrike | 1 | 1 | 2024-08-19 |
| Sangfor | 1 | 1 | 2025-06-24 |
| Atlassian | 1 | 1 | 2026-05-22 |
| Wellbia.com Co., Ltd. | 1 | 1 | 2026-05-12 |
| Rapid7 | 1 | 1 | 2026-05-15 |
| Zscaler | 1 | 1 | 2024-05-27 |
| HitmanPro | 1 | 1 | 2024-08-19 |
| Stormshield | 1 | 1 | 2023-06-27 |
| Quest | 1 | 1 | 2024-04-30 |
| Sophos | 1 | 1 | 2025-04-11 |
| Broadcom (Symantec) | 1 | 1 | 2024-01-26 |
| Bitdefender | 1 | 1 | 2024-04-09 |
| Product | Confidence | Disclosed | Source | |
|---|---|---|---|---|
| Palo Alto Networks | high | 2026-06-01 | cyberscoop.com | record → |
| Elastic | high | 2026-05-28 | nvd.nist.gov | record → |
| Microsoft | medium | 2026-05-22 | Microsoft Threat Intel | record → |
| F5 | high | 2026-05-22 | Microsoft Threat Intel | record → |
| Atlassian | high | 2026-05-22 | Microsoft Threat Intel | record → |
| high | 2026-05-22 | hackaday.com | record → | |
| Microsoft | high | 2026-05-18 | www.csoonline.com | record → |
| Microsoft | high | 2026-05-18 | thehackernews.com | record → |
| Rapid7 | high | 2026-05-15 | nvd.nist.gov | record → |
| Wellbia.com Co., Ltd. | high | 2026-05-12 | blacksnufkin.github.io | record → |
| Microsoft | high | 2026-04-17 | www.cyderes.com | record → |
| Microsoft | high | 2026-04-07 | www.cyderes.com | record → |
| Elastic | high | 2026-03-18 | www.tenable.com | record → |
| Comodo Security | high | 2026-03-16 | cvefeed.io | record → |
| Trend Micro | high | 2025-08-05 | www.sentinelone.com | record → |
| Sangfor | high | 2025-06-24 | www.tenable.com | record → |
| Microsoft | high | 2025-06-10 | cybersecuritynews.com | record → |
| Microsoft | high | 2025-05-15 | cybersecuritynews.com | record → |
| Palo Alto Networks | high | 2025-05-14 | security.paloaltonetworks.com | record → |
| Sophos | high | 2025-04-11 | www.sophos.com | record → |
| high | 2025-02-02 | spycloud.com | record → | |
| Trend Micro | high | 2024-11-18 | dbugs.ptsecurity.com | record → |
| Fortinet | high | 2024-10-24 | cloud.google.com | record → |
| HitmanPro | high | 2024-08-19 | securityaffairs.com | record → |
| Microsoft | high | 2024-08-19 | securityaffairs.com | record → |
| CrowdStrike | high | 2024-08-19 | securityaffairs.com | record → |
| ESET | high | 2024-07-31 | www.thezdi.com | record → |
| Zscaler | high | 2024-05-27 | spaceraccoon.substack.com | record → |
| Apple | high | 2024-05-11 | github.com | record → |
| Quest | high | 2024-04-30 | www.tenable.com | record → |
| Bitdefender | high | 2024-04-09 | www.sentinelone.com | record → |
| ConnectWise | high | 2024-03-01 | www.scworld.com | record → |
| Undisclosed security vendor | medium | 2024-02-28 | businessinsights.bitdefender.com | record → |
| Ivanti | high | 2024-02-28 | businessinsights.bitdefender.com | record → |
| Microsoft | high | 2024-02-07 | research.checkpoint.com | record → |
| ESET | high | 2024-01-31 | securityvulnerability.io | record → |
| Broadcom (Symantec) | high | 2024-01-26 | cve.armis.com | record → |
| Trellix | high | 2024-01-09 | www.sentinelone.com | record → |
| Stormshield | high | 2023-06-27 | cve.imfht.com | record → |
| Trellix | high | 2023-06-09 | feedly.com | record → |
| Apple | high | 2023-06-01 | eugene.kaspersky.com | record → |
Counts reflect distinct publicly-reported events on record; absence of an entry means no confirmed public report is on file.