https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1477
Exploiting a EoP vulnerability in a printer-related COM service on Windows
SBX(low to system) might also be possible as the target interface is accessible from low IL processes.