Researchers disclose details of a high-severity Microsoft Windows vulnerability that could give attackers elevated privileges. The bug stems from User Account Control (UAC), a security feature of Windows within Secure Desktop which helps prevent unauthorized changes to the operating system. The vulnerability (CVE-2019-1388) has a CVSS score of 7.8 out of 10.0. Microsoft patched the flaw as part of its Patch Tuesday updates released last week. The flaw was discovered by researchers with the Zero Day Initiative.
Source: https://threatpost.com/windows-uac-flaw-privilege-escalation/150463/