Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2024-21407: Windows Hyper-V Remote Code Execution Vulnerability

How would an attacker exploit this vulnerability?

This vulnerability would require an authenticated attacker on a guest VM to send specially crafted file operation requests on the VM to hardware resources on the VM which could result in remote code execution on the host server.

Microsoft Security Response Center
#vulnerability#windows#rce#auth#Role: Windows Hyper-V#Security Vulnerability

Microsoft Security Response Center: Latest News

CVE-2024-49060: Azure Stack HCI Elevation of Privilege Vulnerability