CyberSecurity

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. 

Updated acknowledgment. This is an informational change only. 

Updated the build numbers. This is an informational update only. 

Updated one or more CVSS scores for the affected products. This is an informational change only. 

Improper limitation of a pathname to a restricted directory (‘path traversal’) in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 

The security update is avaialble for Microsoft SharePoint Server Subscription Edition. Microsoft strongly encourages customers running this version of SharePoint to install this update as soon as possible. 

Missing authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network. 

Improper authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network. 

Weak authentication in Azure Machine Learning allows an authorized attacker to elevate privileges over a network. 

Authentication bypass by assumed-immutable data in Azure DevOps allows an unauthorized attacker to elevate privileges over a network.