Arbitrary file security descriptor overwrite in AppXSvc
15 September 2019 at 18:50
An elevation of privilege vulnerability (CVE-2019-1253) exists when the AppX Deployment Server (AppXSvc) improperly handles file hard links resulting in a low privileged user being able to take Full Control of an arbitrary file.