Microsoft has issued an out-of-band patch for two zero-day vulnerabilities in Windows, both of which have been actively exploited. The first flaw (CVE-2021-31166) is a remote code execution vulnerability in the HTTP Protocol Stack, while the second (CVE-2021-31194) is a privilege escalation vulnerability in the Windows Kernel. The vulnerabilities are […]