Seven Windows privilege escalation vulnerabilities remain unaddressed by Microsoft, two months after Pwn2Own 2024, posing a severe security risk as ZDI considers them 'in the wild,' with potential exploit details release looming; despite Patch Tuesday fixes, crucial bugs revealed in March are still unpatched, leaving Windows users vulnerable to combined exploitation techniques known to threat actors; Microsoft has only patched one issue shared with Google Chrome so far, causing concern over the delayed response compared to other vendors who quickly addressed similar security flaws, now prompting worries about the company's ability to prioritize and manage security updates given the high reliance on its widely used OS by billions of users worldwide. ```
https://www.darkreading.com/vulnerabilities-threats/microsoft-has-yet-to-patch-7-pwn2own-zero-days