CVE-2024-9603: Chromium: CVE-2024-9603 Type Confusion in V8

CVE-2024-9602: Chromium: CVE-2024-9602 Type Confusion in V8

CVE-2024-43536: Windows Mobile Broadband Driver Remote Code Execution Vulnerability

CVE-2024-43528: Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2024-43610: Copilot Studio Information Disclosure Vulnerability

**According to the CVSS metric, the attack vector is network (AV:N) and the user interaction is required (UI:R). What is the target context of the remote code execution?**

This attack requires a client to connect to a malicious server, and that could allow the attacker to gain code execution on the client.

Headline

CVE-2024-6197: Hackerone: CVE-2024-6197 Freeing stack buffer in utf8asn1str

Microsoft Security Response Center: Latest News