On July 7th, Microsoft Security released a special OOB patch for PrintNightmare vulnerability  (CVE-2021-34527).  ADMINs should promptly patch vulnerable systems.

Microsoft Releases Patches for CVE-2021-34527 (sans.edu)

Out-of-Band (OOB) Security Update available for CVE-2021-34527 – Microsoft Security Response Center

Microsoft today released patches for CVE-2021-34527, the vulnerability also known as “PrintNightmare.” Patches are now available for all affected versions of Windows (as long as they are still supported). Applying the update will also patch the older CVE-2021-1675 vulnerability.  The main issue with “printnightmare” was the ability of regular users to load their own printer drivers. One issue the patch fixes is that normal users are only allowed to provide digitally signed printer drivers. Unsigned drivers may only be installed by Administrators, reducing the privilege escalation issue of normal users installing malicious printer drivers.