CISA description
Unspecified vulnerability allows for an authenticated user to escalate privileges.
CVE-2021-40449 Ransomware
Microsoft · Windows
Microsoft Windows Win32k Privilege Escalation Vulnerability
Required action
Apply updates per vendor instructions.
Notes & references
Where this lands in 800-53
Vulnerability data triggers these controls during assessment and continuous monitoring.