Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2018-8315
HistorySep 13, 2018 - 12:29 a.m.

CVE-2018-8315

2018-09-1300:29:00
CWE-200
[email protected]
web.nvd.nist.gov
42
cve-2018-8315
information disclosure
browser scripting
chakracore
internet explorer
microsoft edge

4.2 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

3.9 Low

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.9%

JSON

An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka “Microsoft Scripting Engine Information Disclosure Vulnerability.” This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10.

VendorProductVersionCPE
microsoftchakracore*cpe:2.3:a:microsoft:chakracore:*:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1607 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1607 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1607 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1607 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1703 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1703 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1703 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1703 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1709 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1709 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1709 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1709 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1803 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1803 for 32-bit Systems:*:*:*:*:*:*:*
Rows per page:
1-10 of 311

Related

osv 1
symantec 1
prion 1
veracode 1
mscve 1
github 1
openvas 8
mskb 9
nessus 9
kaspersky 1
talosblog 1
osv
osv
ChakraCore information disclosure vulnerability
2022-05-14 02:03:04
symantec
symantec
Microsoft Internet Explorer and Edge CVE-2018-8315 Information Disclosure Vulnerability
2018-09-11 00:00:00
prion
prion
Information disclosure
2018-09-13 00:29:00
veracode
veracode
Information Disclosure
2018-09-14 08:12:25
mscve
mscve
Microsoft Scripting Engine Information Disclosure Vulnerability
2018-09-11 07:00:00
github
github
ChakraCore information disclosure vulnerability
2022-05-14 02:03:04
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (KB4457426)
2018-09-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4457144)
2018-09-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4457129)
2018-09-12 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: September 11, 2018
2018-09-11 07:00:00
September 11, 2018—KB4457135 (Monthly Rollup)
2018-09-11 07:00:00
September 11, 2018—KB4457144 (Monthly Rollup)
2018-09-11 07:00:00
nessus
nessus
Security Updates for Internet Explorer (September 2018)
2018-09-11 00:00:00
KB4457140: Windows Server 2012 September 2018 Security Update
2018-09-11 00:00:00
KB4457145: Windows 7 and Windows Server 2008 R2 September 2018 Security Update
2018-09-11 00:00:00
kaspersky
kaspersky
KLA11318 Multiple vulnerabilities in Microsoft Browsers
2018-09-11 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - September 2018
2018-09-11 11:56:00

4.2 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

3.9 Low

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.9%

JSON
Related for CVE-2018-8315
osv1symantec1prion1veracode1mscve1github1openvas8mskb9nessus9kaspersky1talosblog1