CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2814 matches found

Veracode•added 2018/12/04 2:23 p.m.•28 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, allowing a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0224, CVE-2017-0229, CVE-2017-0230,...

7.5CVSS7.6AI score0.55566EPSS

Exploits2References1Affected Software2

Veracode•added 2018/12/04 2:12 p.m.•26 views

Remote Code Execution (RCE)

7.5CVSS7.9AI score0.36638EPSS

Exploits0References1Affected Software2

Veracode•added 2018/12/04 12:59 p.m.•28 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, which allows for a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-0834, CVE-2018-0835,...

7.5CVSS7.5AI score0.7974EPSS

Exploits21References6Affected Software2

Veracode•added 2018/12/04 12:56 p.m.•35 views

Remote Code Execution (RCE)

7.5CVSS7.5AI score0.7974EPSS

Exploits21References7Affected Software2

Veracode•added 2018/12/04 12:39 p.m.•32 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, which allows a remote attacker to execute arbitrary code in the context of the user. This CVE ID is different from CVE-2018-0834, CVE-2018-0835, CVE-2018-0837,...

7.5CVSS7.5AI score0.7974EPSS

Exploits21References6Affected Software2

Veracode•added 2018/12/04 12:29 p.m.•23 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, allowing for a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-0834, CVE-2018-0836,...

7.5CVSS7.5AI score0.7974EPSS

Exploits21References7Affected Software2

Veracode•added 2018/11/16 2:45 a.m.•34 views

Remote Code Execution (RCE)

Microsoft Chakracore is vulnerable to remote code execution. The scripting engine does not properly handle objects in memory, which would allow an attacker to execute arbitrary commands in the context of the authenticated user. This CVE ID is different from CVE-2017-11886, CVE-2017-11889,...

7.5CVSS7.9AI score0.76161EPSS

Exploits28References7Affected Software2

NVD•added 2018/11/14 1:29 a.m.•21 views

CVE-2018-8588

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8541, CVE-2018-8542,...

7.6CVSS7.6AI score0.18322EPSS

Exploits0References3

OSV•added 2018/11/14 1:29 a.m.•1 views

CVE-2018-8588

7.5CVSS7.8AI score0.18322EPSS

Exploits0References3

NVD•added 2018/11/14 1:29 a.m.•18 views

CVE-2018-8555

7.6CVSS7.6AI score0.18322EPSS

Exploits0References3

OSV•added 2018/11/14 1:29 a.m.•2 views

CVE-2018-8552

An information disclosure vulnerability exists when VBScript improperly discloses the contents of its memory, which could provide an attacker with information to further compromise the user's computer or data, aka "Windows Scripting Engine Memory Corruption Vulnerability." This affects Internet...

7.5CVSS7.3AI score0.47442EPSS

Exploits3References3

NVD•added 2018/11/14 1:29 a.m.•18 views

CVE-2018-8557

7.6CVSS7.6AI score0.18322EPSS

Exploits0References3

OSV•added 2018/11/14 1:29 a.m.•1 views

CVE-2018-8551

7.5CVSS7.8AI score0.18322EPSS

Exploits0References3

OSV•added 2018/11/14 1:29 a.m.•1 views

CVE-2018-8557