Microsoft released a knowledge base article regarding CVE-2021-36934 . Bojan yesterday explained the vulnerability in more detail. Recent versions of Microsoft Windows expose several system files due to overly permissive access control lists. Of main interest is the Security Accounts Manager (SAM), which exposes password hashes. It has been demonstrated how this can easily be exploited by retrieving these files from shadow volumes.
Article Link: InfoSec Handlers Diary Blog