Microsoft has fixed a vulnerability in all current Windows versions that allows an attacker to exploit the Windows Group Policy feature to take full control over a computer. The vulnerability was discovered by cybersecurity firm CyberArk, who found a symlink attack against a file used for Group Policy updates to gain elevated privileges. This vulnerability affects any Windows machine (2008 or higher), to escalate its privileges in a domain environment. Microsoft fixed it today in their June 2020 Patch Tuesday security updates as part of today’s Patch Tuesday.
Source: https://www.bleepingcomputer.com/news/security/windows-group-policy-flaw-lets-attackers-gain-admin-privileges/