Microsoft critical vulnerability boom persists