Lucene search

[email protected]CVE-2018-8452

HistorySep 13, 2018 - 12:29 a.m.

CVE-2018-8452

2018-09-1300:29:05

CWE-200

[email protected]

web.nvd.nist.gov

information security

vulnerability

microsoft

browser

nvd

cve-2018-8452

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft browsers, aka “Scripting Engine Information Disclosure Vulnerability.” This affects ChakraCore, Internet Explorer 11, Microsoft Edge.

Affected configurations

Vulners

NVD

Node

microsoftchakracore

microsoftinternet_explorer_11MatchWindows 10 for 32-bit Systems

microsoftinternet_explorer_11MatchWindows 10 for x64-based Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1607 for 32-bit Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1607 for x64-based Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1703 for 32-bit Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1703 for x64-based Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1709 for 32-bit Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1709 for x64-based Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1803 for 32-bit Systems

microsoftinternet_explorer_11MatchWindows 10 Version 1803 for x64-based Systems

microsoftinternet_explorer_11MatchWindows 7 for 32-bit Systems Service Pack 1

microsoftinternet_explorer_11MatchWindows 7 for x64-based Systems Service Pack 1

microsoftinternet_explorer_11MatchWindows 8.1 for 32-bit systems

microsoftinternet_explorer_11MatchWindows 8.1 for x64-based systems

microsoftinternet_explorer_11MatchWindows RT 8.1

microsoftinternet_explorer_11MatchWindows Server 2008 R2 for x64-based Systems Service Pack 1

microsoftinternet_explorer_11MatchWindows Server 2012 R2

microsoftinternet_explorer_11MatchWindows Server 2016

microsoftedgeMatchWindows 10 for 32-bit Systems

microsoftedgeMatchWindows 10 for x64-based Systems

microsoftedgeMatchWindows 10 Version 1607 for 32-bit Systems

microsoftedgeMatchWindows 10 Version 1607 for x64-based Systems

microsoftedgeMatchWindows 10 Version 1703 for 32-bit Systems

microsoftedgeMatchWindows 10 Version 1703 for x64-based Systems

microsoftedgeMatchWindows 10 Version 1709 for 32-bit Systems

microsoftedgeMatchWindows 10 Version 1709 for x64-based Systems

microsoftedgeMatchWindows 10 Version 1803 for 32-bit Systems

microsoftedgeMatchWindows 10 Version 1803 for x64-based Systems

microsoftedgeMatchWindows Server 2016

VendorProductVersionCPE
microsoftchakracore*cpe:2.3:a:microsoft:chakracore:*:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1607 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1607 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1607 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1607 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1703 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1703 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1703 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1703 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1709 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1709 for 32-bit Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1709 for x64-based Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1709 for x64-based Systems:*:*:*:*:*:*:*
microsoftinternet_explorer_11Windows 10 Version 1803 for 32-bit Systemscpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1803 for 32-bit Systems:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	chakracore	*	cpe:2.3:a:microsoft:chakracore::::::::
microsoft	internet_explorer_11	Windows 10 for 32-bit Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for 32-bit Systems:::::::*
microsoft	internet_explorer_11	Windows 10 for x64-based Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for x64-based Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1607 for 32-bit Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1607 for 32-bit Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1607 for x64-based Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1607 for x64-based Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1703 for 32-bit Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1703 for 32-bit Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1703 for x64-based Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1703 for x64-based Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1709 for 32-bit Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1709 for 32-bit Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1709 for x64-based Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1709 for x64-based Systems:::::::*
microsoft	internet_explorer_11	Windows 10 Version 1803 for 32-bit Systems	cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 Version 1803 for 32-bit Systems:::::::*

Rows per page:

1-10 of 301

CNA Affected

[
  {
    "product": "ChakraCore",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "ChakraCore"
      }
    ]
  },
  {
    "product": "Internet Explorer 11",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "Windows 10 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1607 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1703 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "Windows RT 8.1"
      },
      {
        "status": "affected",
        "version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "Windows Server 2016"
      }
    ]
  },
  {
    "product": "Microsoft Edge",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "Windows 10 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1607 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1703 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows Server 2016"
      }
    ]
  }
]