Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mscveMicrosoftMS:CVE-2018-8298
HistoryJul 10, 2018 - 7:00 a.m.

Scripting Engine Memory Corruption Vulnerability

2018-07-1007:00:00
Microsoft
msrc.microsoft.com
10

0.685 Medium

EPSS

Percentile

98.0%

JSON

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user.

If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

The security update addresses the vulnerability by modifying how the ChakraCore scripting engine handles objects in memory.

Related

checkpoint_advisories 1
veracode 2
cisa_kev 1
packetstorm 1
zdt 1
symantec 1
osv 10
github 5
cve 7
prion 7
cvelist 7
attackerkb 2
thn 1
kaspersky 1
talosblog 1
trendmicroblog 1
checkpoint_advisories
checkpoint_advisories
Microsoft Chakra Scripting Engine Memory Corruption (CVE-2018-8298)
2018-07-10 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2018-07-11 07:02:47
Remote Code Execution (RCE)
2018-07-11 08:35:58
cisa_kev
cisa_kev
ChakraCore Scripting Engine Type Confusion Vulnerability
2022-03-03 00:00:00
packetstorm
packetstorm
Microsoft Edge Chakra InitializeNumberFormat / InitializeDateTimeFormat Type Confusion
2018-08-17 00:00:00
zdt
zdt
Microsoft Edge Chakra JIT - InitializeNumberFormat and InitializeDateTimeFormat Type Confusion Explo
2018-08-17 00:00:00
symantec
symantec
Microsoft ChakraCore Scripting Engine CVE-2018-8298 Remote Memory Corruption Vulnerability
2018-07-10 00:00:00
osv
osv
CVE-2018-8291
2018-07-11 00:29:01
CVE-2018-8287
2018-07-11 00:29:01
ChakraCore RCE Vulnerability
2022-05-13 01:20:45
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:20:45
ChakraCore RCE Vulnerability
2022-05-13 01:20:46
ChakraCore RCE Vulnerability
2022-05-13 01:20:44
cve
cve
CVE-2018-8283
2018-07-11 00:29:00
CVE-2018-8288
2018-07-11 00:29:00
CVE-2018-8242
2018-07-11 00:29:00
prion
prion
Remote code execution
2018-07-11 00:29:00
Remote code execution
2018-07-11 00:29:00
Remote code execution
2018-07-11 00:29:00
cvelist
cvelist
CVE-2018-8242
2018-07-11 00:00:00
CVE-2018-8296
2018-07-11 00:00:00
CVE-2018-8283
2018-07-11 00:00:00
attackerkb
attackerkb
CVE-2018-8298
2018-07-11 00:00:00
CVE-2018-8287
2018-07-11 00:00:00
thn
thn
Microsoft Releases Patch Updates for 53 Vulnerabilities In Its Software
2018-07-10 18:47:00
kaspersky
kaspersky
KLA11290 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2018-07-10 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - July 2018
2018-07-10 10:36:00
trendmicroblog
trendmicroblog
Zero-Day Coverage Update – Week of July 9, 2018
2018-07-13 14:10:20

0.685 Medium

EPSS

Percentile

98.0%

JSON
Related for MS:CVE-2018-8298
checkpoint_advisories1veracode2cisa_kev1packetstorm1zdt1symantec1osv10github5cve7prion7cvelist7attackerkb2thn1kaspersky1talosblog1trendmicroblog1