According to her blog content, she hopes to sell the vulnerabilities she found to those who "hate the United States," apparently in retaliation for the FBI's subpoena on her Google account. GitHub proof-of-concepts includes threeWindowsLocal privilege escalation (LPE) security vulnerabilities and a sandbox escape vulnerability in IE 11 browser. However, one of the LPE vulnerabilities has been fixed in this month's patch Tuesday campaign.
Among the three unfixed zero-day vulnerabilities, the most serious one is the one numbered CVE-2019-0863, which is an LPE vulnerability for Windows Error Reporting service. It scored 7.8 points (high) in the CVSS 3.0 severity score.