CVE-2024-9370: Chromium: CVE-2024-9370 Inappropriate implementation in V8

CVE-2024-9369: Chromium: CVE-2024-9369 Insufficient data validation in Mojo

CVE-2024-7025: Chromium: CVE-2024-7025 Integer overflow in Layout

CVE-2024-9123: Chromium: CVE-2024-9123 Integer overflow in Skia

CVE-2024-9122: Chromium: CVE-2024-9122 Type Confusion in V8

**According to the CVSS, User Interaction is Required. What interaction would the user have to do?**

Exploitation of the vulnerability requires that a target be lured to and make use of a specially crafted functionality on a SharePoint page created by the attacker.

An attacker would have no way to force users to visit the website. Instead, an attacker would have to convince users to click a link, typically by way of an enticement in an email or instant message, and then convince them to use the intended functionality.

Headline

CVE-2022-21987: Microsoft SharePoint Server Spoofing Vulnerability

Microsoft Security Response Center: Latest News