SandboxEscaper publicly disclosed a second Windows zero-day exploit dubbed ByeBear to bypass a recently patched elevation of privilege issue. The flaw, tracked s CVE-2019-0841, was already patched by Windows, it affects the way Windows AppX Deployment Service (AppXSVC) handles hard links. A specially crafted malicious application could be used to escalate its privileges and take complete control of Windows machine. Microsoft plans to release it Patch Tuesday security updates for June on 11th June.”]
Source: https://securityaffairs.co/wordpress/86780/hacking/sandboxescaper-byebear-exploit.html