Microsoft explains how it decides whether a vulnerability will be patched swiftly or left for a version update.

https://www.zdnet.com/article/windows-security-heres-why-we-dont-fix-some-bugs-right-away-microsoft-reveals/#ftag=RSSbaffb68