CVE-2019-1378
CVE-2019-1378 is a local privilege escalation affecting Windows 10 Update Assistant. The vulnerability arises from how permissions are handled in the Update Assistant, allowing a locally authenticated attacker to elevate to SYSTEM and run arbitrary code. Microsoft’s advisory notes that the fix in...