I have independently reported this vulnerability to MSRC as part of my research inspired by CVE-2019-0841 originally reported by Nabeel Ahmed. This vulnerability allows a regular user to overwrite arbitrary files. However, the attacker's capabilities are limited, due to the lack of control over the file's content, hence it's most likely usage is in various denial of service scenarios. See Arbitrary file overwrite in AppXSvc for more information.
