It is the only vulnerability this month rated CVSS 9.8 AND listed on Microsoft's exploitation-more-likely list. It requires no login and no user interaction, and a successful exploit grants kernel-mode access — the highest privilege level in Windows.