A vulnerability in Microsoft’s Remote Desktop Protocol (RDP) can also be used to escape virtual machines running on Hyper-V, the virtualization technology in Windows 10. The bug is a path traversal that leads to remote execution and was reported to Microsoft almost a year ago as affecting only RDP. The vulnerability remained unpatched until recently, when it was discovered that it impacts Microsoft’s hyper-V product. An attacker could use this vulnerability to compromise computers of privileged users in a company.
Source: https://www.bleepingcomputer.com/news/security/microsoft-ignored-rdp-vulnerability-until-it-affected-hyper-v/