CVE-2018-0943

The provided connected advisories identify a memory handling issue in the Chakra scripting engine (ChakraCore) that can lead to remote code execution or information disclosure in Microsoft Edge/IE. Description across sources consistently cites improper memory handling in Chakra objects as the roo...

CVE-2018-0943

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8130, CVE-2018-8133,...

CVE-2018-0945

CVE-2018-0945 is a remote code execution vulnerability in the Microsoft Edge scripting engine, arising from memory handling of objects and affecting Edge and ChakraCore. The connected advisories corroborate a ChakraCore/Edge memory-corruption issue described as a remote code execution vulnerabili...

CVE-2018-8128

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951,...

CVE-2018-0955

CVE-2018-0955 is a remote code execution vulnerability in the Internet Explorer scripting engine related to how objects are handled in memory. Affected products: Internet Explorer 9, 10, and 11. Root cause described as memory corruption within the scripting engine. Exploit details are not provide...

CVE-2018-1022

CVE-2018-1022 is a remote code execution vulnerability in which the scripting engine mishandles objects in memory. Connected sources indicate this affects ChakraCore, Internet Explorer 11, and Microsoft Edge, with the issue described as a memory corruption vulnerability in the scripting engine. T...

CVE-2018-0953

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951,...

CVE-2018-8137

CVE-2018-8137 is a remote code execution vulnerability in the Microsoft Edge scripting engine (ChakraCore) linked to memory handling of objects. The connected advisories confirm this vulnerability affects Edge and ChakraCore and classify it as remote code execution, but the documents do not provi...

CVE-2018-8133

CVE-2018-8133 is a remote code execution vulnerability in the Chakra scripting engine’s memory handling, affecting Microsoft Edge and ChakraCore. The root cause is memory corruption within Chakra’s object handling, enabling an attacker to run arbitrary code in the context of the user. Multiple co...

CVE-2018-8133

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0943, CVE-2018-8130,...

CVE-2018-8177

The connected advisories collectively describe a ChakraCore memory-corruption vulnerability that can lead to remote code execution affecting ChakraCore and Microsoft Edge. The CVE-2018-8177 entry is linked to the broader family of Chakra memory–corruption flaws; however, the provided documents do...

CVE-2018-0951

CVE-2018-0951 describes a remote code execution vulnerability in the Microsoft Edge scripting engine’s handling of in-memory objects. Affected product: Microsoft Edge. Root cause: memory handling issue within the scripting engine leading to memory corruption. Impact as stated: potential remote co...

CVE-2018-8130

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0943, CVE-2018-8133,...

CVE-2018-0946

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0951, CVE-2018-0953,...

CVE-2018-0954

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ...

CVE-2018-8139

CVE-2018-8139 is a remote code execution in the scripting engine used by Microsoft Edge and ChakraCore, caused by memory handling when processing objects. Affected: Edge and ChakraCore. Exploitation is evidenced by CIRCL/exploit-db references (e.g., exploit-DB ID 45012). The advisories confirm th...

Microsoft Windows Multiple Vulnerabilities (KB4103716)

This host is missing a critical security update according to Microsoft KB4103716 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CNVD-2018-10733)

Microsoft Internet Explorer is a popular WEB browser. A memory corruption vulnerability exists in Microsoft Internet Explorer's handling of memory objects, which allows remote attackers to exploit a vulnerable special WEB page and trick the user into parsing it, which could cause the application ...

Microsoft Edge Memory Corruption Vulnerability (CNVD-2018-10209)

Microsoft Windows 10 and Windows Server 2016 are both products of Microsoft Corporation.Microsoft Windows 10 is a set of operating systems for personal computers.Windows Server 2016 is a set of server operating systems.Edge is one of the a default browser that comes with the system. A remote code...

Microsoft Internet Explorer Arbitrary Code Execution Vulnerability (CNVD-2018-10669)

Microsoft Windows Server 2012 and others are a series of operating systems released by Microsoft Corporation, U.S.A. Internet Explorer IE is one of the web browsers that comes with the Windows operating system. A remote code execution vulnerability exists in the way the scripting engine handles I...