Kaspersky: We believe this exploit is used in the wild, potentially by several threat actors. It is an escalation of privilege (EoP) exploit that is likely used together with other browser exploits to escape sandboxes or get system privileges. Microsoft released a patch to this vulnerability as a part of its April security updates. In this blog we provide a technical analysis of the vulnerability and how the bad guys exploited it. The exploit was initially identified by our advanced exploit prevention technology and related detection records.”]