Windows 10 and Windows 11 are vulnerable to a local elevation of privilege vulnerability after discovering that users with low privileges can access sensitive Registry database files. Security researcher Jonas Lykkegaard told BleepingComputer he discovered that the Windows Registry files associated with the Security Account Manager (SAM), and all other Registry databases, are accessible to the ‘Users’ group that has low privileges on a device. Microsoft has shared mitigations that restrict the permissions on the. C:Windowssystem32config folder.
Source: https://www.bleepingcomputer.com/news/microsoft/new-windows-10-vulnerability-allows-anyone-to-get-admin-privileges/