How a Hyper‑V Deep‑Dive Uncovered Microsoft’s Hidden CVE‑2024‑21305 Bug
Security researcher Satoshi Tanda’s investigation of Hyper‑V and HVCI led to the discovery of CVE‑2024‑21305, a critical vulnerability that allows arbitrary kernel‑mode code execution by exploiting RWX guest physical addresses hidden in UEFI firmware, prompting a two‑pronged Microsoft fix.
