The Container Manager Service does not impersonate the caller when granting access to virtual disk images leading to privilege escalation.
advisories | CVE-2021-31168
Windows Container Manager Service CmsRpcSrv_MapVirtualDiskToContainer Privilege Escalation
