CVE-2024-10488: Chromium: CVE-2024-10488 Use after free in WebRTC

CVE-2024-10487: Chromium: CVE-2024-10487: Out of bounds write in Dawn

CVE-2024-10231: Chromium: CVE -2024-10231 Type Confusion in V8

CVE-2024-10230: Chromium: CVE -2024-10230 Type Confusion in V8

CVE-2024-10229: Chromium: CVE -2024-10229 Inappropriate implementation in Extensions

**How would an attacker exploit this vulnerability?**

This vulnerability would require an authenticated attacker on a guest VM to send specially crafted file operation requests on the VM to hardware resources on the VM which could result in remote code execution on the host server.

Headline

CVE-2024-21407: Windows Hyper-V Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News