Microsoft left a Windows kernel zero-day unpatched for six months, despite knowing it was being actively exploited

. The vulnerability could allow attackers to gain elevated privileges and bypass security features. Microsoft was informed of the issue by a security researcher but failed to release a security patch until six months later. This delay potentially left Windows users vulnerable to exploitation.