CVE-2013-3660

The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft does not properly initialize a pointer for the next object in a certain list, which allows local users to gain privileges. Vendor/Product: Microsoft Win32k. Added to CISA KEV 2022-03-28; required action: Apply updates per vendor instructions.