CVE-2024-49060: Azure Stack HCI Elevation of Privilege Vulnerability

CVE-2024-11117: Chromium: CVE-2024-11117 Inappropriate implementation in FileSystem

CVE-2024-11116: Chromium: CVE-2024-11116 Inappropriate implementation in Paint

CVE-2024-11115: Chromium: CVE-2024-11115 Insufficient policy enforcement in Navigation

CVE-2024-11114: Chromium: CVE-2024-11114 Inappropriate implementation in Views

**How would an attacker exploit this vulnerability?**

This vulnerability would require an authenticated attacker on a guest VM to send specially crafted file operation requests on the VM to hardware resources on the VM which could result in remote code execution on the host server.

Headline

CVE-2024-21407: Windows Hyper-V Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News