Lucene search

K
osvGoogleOSV:GHSA-JGRP-6QQQ-3284
HistoryMay 24, 2022 - 7:20 p.m.

Chakra Scripting Engine and ChakraCore Vulnerable to Memory Corruption

2022-05-2419:20:22
Google
osv.dev
18

0.003 Low

EPSS

Percentile

68.9%

Chakra Scripting Engine and ChakraCore are vulnerable to memory corruption due to an out-of-bounds write. The Microsoft advisory for CVE-2021-42279 was modified in August 2022 to include Microsoft.ChakraCore as an affected product.