Headline
CVE-2023-36712: Windows Kernel Elevation of Privilege Vulnerability
According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?
An attacker must send the user a malicious input file and convince the user to open said input file.