Microsoft Security Response Center Blog Alerts

Chromium: CVE-2024-11115 Insufficient policy enforcement in Navigation

Posted on Thursday November 14, 2024

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Chromium: CVE-2024-11112 Use after free in Media

Posted on Thursday November 14, 2024

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Chromium: CVE-2024-11117 Inappropriate implementation in FileSystem

Posted on Thursday November 14, 2024

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Chromium: CVE-2024-11114 Inappropriate implementation in Views

Posted on Thursday November 14, 2024

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

CVE-2024-43639 Windows KDC Proxy Remote Code Execution Vulnerability

Posted on Wednesday November 13, 2024

Updated the CVE title to better reflect the affected protocol and added an FAQ to explain that only Windows Servers that are configured with the [[MS-KKDCP]: Kerberos Key Distribution Center (KDC) Proxy Protocol](https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-kkdcp/5bcebb8d-b747-4ee5-9453-428aec1c5c38) are affected.

CVE-2024-43530 Windows Update Stack Elevation of Privilege Vulnerability

Posted on Tuesday November 12, 2024

Information published.

Page:   1...424344454647484950...93