CVE-2024-49060: Azure Stack HCI Elevation of Privilege Vulnerability

CVE-2024-11117: Chromium: CVE-2024-11117 Inappropriate implementation in FileSystem

CVE-2024-11116: Chromium: CVE-2024-11116 Inappropriate implementation in Paint

CVE-2024-11115: Chromium: CVE-2024-11115 Insufficient policy enforcement in Navigation

CVE-2024-11114: Chromium: CVE-2024-11114 Inappropriate implementation in Views

**According to the CVSS metrics, successful exploitation of this vulnerability could lead to major loss of confidentiality (C:H) and major loss of integrity (I:H) but have no effect on availability (A:N). What does that mean for this vulnerability?**

Exploiting this vulnerability allows an attacker to view highly sensitive resource information (C:H) and results in a total loss of protection for that data (I:H), but does not provide the capability to impact resource availability.

Headline

CVE-2024-38175: Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News