Microsoft has addressed two zero-day vulnerabilities, UnDefend and RedSun Defender, which could be leveraged by attackers to gain elevated privileges or create a denial-of-service condition. These bugs pose a significant threat as they can be exploited to achieve System-level access, allowing malicious actors to execute arbitrary code. The vulnerabilities are particularly concerning given their potential for exploitation in zero-day attacks, which can have severe consequences. Microsoft's patch aims to mitigate these risks by fixing the underlying flaws. The fact that these zero-days were being actively exploited underscores the importance of prompt patching1. As a result, organizations must assess their exposure to these vulnerabilities and apply the necessary patches to prevent potential attacks. This matters to security practitioners because the window for patching is already closing, making it essential to evaluate their systems' vulnerability to these exploits immediately.