Microsoft Patch Tuesday fixes 2 zero-days

One zero-day, CVE-2026-21351, impacts the Windows Kernel and could allow for privilege escalation. The other, CVE-2026-21356, affects Microsoft Office, and attackers could exploit it to spoof security features. Successful exploitation of CVE-2026-21351 requires an attacker to win a race condition, meaning the attacker needs to time the exploit perfectly to gain the desired outcome. While the specifics of the attacks leveraging CVE-2026-21356 aren't detailed, spoofing vulnerabilities can be used to trick users into divulging sensitive information or running malicious code. Beyond the zero-days, the March Patch Tuesday addresses flaws in Windows, Office, SharePoint Server, Visual Studio, and more. IT and security teams should prioritize patching these vulnerabilities, especially those actively exploited, to minimize potential risks to their organizations.