In a concerning turn of events, a threat actor has allegedly sale of a one-day vulnerability tailored explicitly for a Windows 1-day Local Privilege Escalation (LPE) exploit. The actor has claimed that it works on Windows 10-11 and all versions of Windows Server. In addition, the actor claims that the sale is legitimate and that they will share proof of concept (POC) related to it. The sale package includes the full-source code, with an initial asking price of $5,000.