Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to win a race condition. What privileges could be gained by an attacker who successfully exploited this vulnerability? An attacker who successfully exploited this vulnerability could gain SYSTEM privileges. According to the CVSS metric, successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability? In this case, a successful attack could be performed from a low privilege AppContainer. The attacker could elevate their privileges and execute code or access resources at a higher integrity level than that of the AppContainer execution environment.
<a href="https://linkedin.com/in/jongseongkim">Jongseong Kim (nevul37)</a> with <a href="https://www.enki.co.kr/">Ajou University, and working at ENKI WhiteHat</a>, <a href="https://linkedin.com/in/kdj-abysslab">Dongjun Kim (smlijun)</a> with <a href="https://www.enki.co.kr/">Ajou University, and working at ENKI WhiteHat</a>, <a href="https://www.linkedin.com/in/seongheunh/">Seongheun Hong (seongheunh)</a> with <a href="https://security.ajou.ac.kr/security/index.do">Ajou University</a>, Pwnforr777, Hwiwon Lee (hwiwonl), SEC-agent team, Taewoo (Tae_ω02)