CVE-2019-0803

Microsoft Win32k contains an unspecified vulnerability due to it failing to properly handle objects in memory causing privilege escalation. Successful exploitation allows an attacker to run code in kernel mode. Vendor/Product: Microsoft Win32k. Added to CISA KEV 2021-11-03; required action: Apply updates per vendor instructions.