Remote code execution

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8465,...

CVE-2018-8315

An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10...

CVE-2018-8467

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8465,...

Information disclosure

An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10...

CVE-2018-8367

The base CVE describes a remote code execution in the Chakra engine used by Microsoft Edge and ChakraCore due to memory handling issues. Connected documents corroborate a family of Chakra memory-corruption/RCE vulnerabilities in Edge/ChakraCore and include exploits for related CVEs (CVE-2018-8465...

Microsoft Internet Explorer and Edge Memory Corruption Vulnerability (CNVD-2018-18626)

Microsoft Windows Server 2012 and others are a series of operating systems released by Microsoft.Internet Explorer IE and Edge are web browsers developed by Microsoft.IE is the default browser that came with the operating system before Windows 10.Edge is the default browser that came with the...

CVE-2018-8391

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8354, CVE-2018-8456, CVE-2018-8457, CVE-2018-8459...

CVE-2018-8354

Technical details about CVE-2018-8354 are not publicly provided in the supplied documents. Monitor for updates from official advisories.

CVE-2018-8467

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8465,...

CVE-2018-8465

Technical details about CVE-2018-8465 are not publicly provided in the supplied documents. No affected product versions, root cause specifics, mitigations, or exploit indicators are present here. Monitor for updates from official advisories.

CVE-2018-8391

The CVE-2018-8391 entry identifies a remote code execution vulnerability in ChakraCore’s memory handling of objects. Affected: ChakraCore (and related Chakra/Edge components). Root cause: memory corruption in object handling. Impact: high likelihood of arbitrary code execution with network access...

CVE-2018-8367

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8465, CVE-2018-8466,...

CVE-2018-8354

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8391, CVE-2018-8456, CVE-2018-8457,...

CVE-2018-8315

An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10...

CVE-2018-8466

CVE-2018-8466 details a remote code execution in the Chakra scripting engine used by Microsoft Edge and ChakraCore, caused by memory object handling vulnerabilities. The initial entry notes a memory corruption/RC vulnerability, with Edge/ChakraCore as affected. Connected sources corroborate Chakr...

CVE-2018-8452

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft browsers, aka "Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge...

CVE-2018-8466

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8465,...

CVE-2018-8467

CVE-2018-8467 is a remote code execution vulnerability in the Chakra scripting engine used by Microsoft Edge and ChakraCore, caused by memory handling of objects. The issue enables code execution via crafted objects in memory and is associated with exploitation in the wild (Exploit-DB entries htt...

CVE-2018-8465

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8466,...

CVE-2018-8459

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8354, CVE-2018-8391, CVE-2018-8456,...