CVE-2013-3660: Microsoft Win32k Privilege Escalation Vulnerability. The

Microsoft Win32k Privilege Escalation Vulnerability. The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft does not properly initialize a pointer for the next object in a certain list, which allows local users to gain privileges.

• CISA KEV-listed (remediation due 2022-04-18)
• EPSS 70.6% (98.7% percentile)

Browse the CVE database

Read the full analysis on IntelFusions