An exploit window is the time between the discovery of a vulnerability and the point when effective patching, configuration changes, or other mitigations reduce the risk. During this period, attackers may be able to study the flaw, build proof-of-concept code, and turn it into a working exploit before defenders close the gap.
This matters because the shorter the window, the less time security teams have to triage alerts, test updates, and deploy fixes across real systems. In modern attacks, automation can compress the window by speeding up reconnaissance and exploit development. Defenders respond by reducing exposure, applying compensating controls, and using measures such as Zero Trust, segmentation, deception, and automated containment to limit what an attacker can reach while patches are being prepared.



