CVE-2024-9370: Chromium: CVE-2024-9370 Inappropriate implementation in V8

CVE-2024-9369: Chromium: CVE-2024-9369 Insufficient data validation in Mojo

CVE-2024-7025: Chromium: CVE-2024-7025 Integer overflow in Layout

CVE-2024-9123: Chromium: CVE-2024-9123 Integer overflow in Skia

CVE-2024-9122: Chromium: CVE-2024-9122 Type Confusion in V8

**How would an attacker exploit this vulnerability?**

This vulnerability would require an authenticated attacker on a guest VM to send specially crafted file operation requests on the VM to hardware resources on the VM which could result in remote code execution on the host server.

Headline

CVE-2024-21407: Windows Hyper-V Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News