CVE-2018-0946

🗓️ 09 May 2018 19:00:00Reported by microsoftType

"Remote code execution vulnerability in Microsoft Edge scripting engine (CVE-2018-0946)

Reporter	Title	Published	Views	Family All 48
Circl	CVE-2018-0946	25 May 201800:00	–	circl
CNVD	Microsoft ChakraCore and Edge Remote Code Execution Vulnerability (CNVD-2018-10208)	9 May 201800:00	–	cnvd
Check Point Advisories	Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0946)	8 May 201800:00	–	checkpoint_advisories
Cvelist	CVE-2018-0946	9 May 201819:00	–	cvelist
EUVD	EUVD-2022-4070	9 May 201819:00	–	euvd
EUVD	EUVD-2022-5586	9 May 201819:00	–	euvd
Github Security Blog	ChakraCore RCE Vulnerability	13 May 202201:18	–	github
Microsoft KB	May 8, 2018—KB4103721 (OS Build 17134.48)	8 May 201807:00	–	mskb
Microsoft KB	May 8, 2018—KB4103727 (OS Build 16299.431)	8 May 201807:00	–	mskb
Microsoft KB	May 8, 2018—KB4103731 (OS Build 15063.1088)	8 May 201807:00	–	mskb

NVD

Node

microsoft edgeMatch-

Node

microsoft chakracoreRange≤1.8.3

[
  {
    "product": "Microsoft Edge",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1703 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for x64-based Systems"
      }
    ]
  },
  {
    "product": "ChakraCore",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "ChakraCore"
      }
    ]
  }
]

Source	Link
exploit-db	www.exploit-db.com/exploits/44758/
securityfocus	www.securityfocus.com/bid/103989
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0946
securitytracker	www.securitytracker.com/id/1040844

21 Nov 2024 03:39Current

7.7High risk

Vulners AI Score7.7

CVSS 37.5

CVSS 27.6

EPSS0.63585