Microsoft published their security bulletin, which patches CVE-2018-8453, among others. It is a vulnerability in win32k.sys discovered by Kaspersky Lab in August. The exploit was executed by the first stage of a malware installer to get necessary privileges for persistence on the victims system. The code of the exploit is of high quality and written with the aim of reliably exploiting as many different MS Windows builds as possible, including MS Windows 10 RS4. So far, we detected a very limited number of attacks using this vulnerability.”]
Source: https://securelist.com/cve-2018-8453-used-in-targeted-attacks/88151/