Lucene search
GoogleOSV:GHSA-FW42-4MQ4-4QPQHistoryMay 13, 2022 - 1:20 a.m.
ChakraCore RCE Vulnerability
2022-05-1301:20:55
Google
osv.dev
3
0.051 Low
EPSS
Percentile
93.0%
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka “Scripting Engine Memory Corruption Vulnerability.” This affects ChakraCore.
References
github.com/chakra-core/ChakraCore
github.com/chakra-core/ChakraCore/commit/cd84a0b85b4b2bcf1653c7bfd5426bbc72b2b216
github.com/chakra-core/ChakraCore/pull/5764
nvd.nist.gov/vuln/detail/CVE-2018-8500
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8500
web.archive.org/web/20210124210846/www.securityfocus.com/bid/105463
Related
nvd
nvd
CVE-2018-8500
2018-10-10 13:29:04
veracode
veracode
Remote Code Execution (RCE)
2018-10-11 02:57:47
cvelist
cvelist
CVE-2018-8500
2018-10-10 13:00:00
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:20:55
symantec
symantec
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-10-09 07:00:00
prion
prion
Remote code execution
2018-10-10 13:29:00
cve
cve
CVE-2018-8500
2018-10-10 13:29:04
kaspersky
kaspersky
KLA11331 Multiple vulnerabilities in Microsoft Browsers
2018-10-09 00:00:00
talosblog
talosblog