CVE-2024-9603: Chromium: CVE-2024-9603 Type Confusion in V8

CVE-2024-9602: Chromium: CVE-2024-9602 Type Confusion in V8

CVE-2024-43536: Windows Mobile Broadband Driver Remote Code Execution Vulnerability

CVE-2024-43528: Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2024-43610: Copilot Studio Information Disclosure Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?**

Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft OneNote and then click on a specially crafted URL to be compromised by the attacker.

Headline

CVE-2023-33140: Microsoft OneNote Spoofing Vulnerability

Microsoft Security Response Center: Latest News