The Verge ----------- Google disclosed a flaw in Microsoft Edge earlier this week, after Microsoft failed to patch the bug in time. Now Google’s Project Zero team of security researchers are disclosing yet another Windows 10 security flaw that Microsoft has again failed to patch before Google’s imposed 90-day period. Neowin spotted that Google reported two bugs to Microsoft in November, but the company only addressed one of them with its recent Patch Tuesday fixes. The latest unpatched issue is an Elevation of Privilege which allows a normal user to gain administrator privileges on a system. Microsoft has rated the flaw as “important,” but not “critical” as it can’t be exploited remotely. It’s still an important issue to fix, as an attacker could potentially combine this with a separate unknown remote code execution to gain administrator access, although that’s an unlikely scenario unless Microsoft doesn’t address it promptly. To learn more click on the picture below to read the article.