CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2814 matches found

OSV•added 2022/05/14 2:23 a.m.•24 views

GHSA-P94C-R74J-43QG ChakraCore RCE Vulnerability

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3377...

7.5CVSS7.7AI score0.15905EPSS

Exploits0References6

Github Security Blog•added 2022/05/14 2:23 a.m.•24 views

ChakraCore RCE Vulnerability

7.6CVSS7.7AI score0.15905EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/14 2:23 a.m.•27 views

GHSA-WV44-9W69-W43J ChakraCore RCE Vulnerability

7.5CVSS7.7AI score0.15905EPSS

Exploits0References7

OSV•added 2022/05/14 2:23 a.m.•25 views

GHSA-294J-R53X-W786 ChakraCore RCE Vulnerability

7.5CVSS7.2AI score0.16801EPSS

Exploits0References7

Github Security Blog•added 2022/05/14 2:23 a.m.•15 views

ChakraCore RCE Vulnerability

The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, as demonstrated by the Chakra JavaScript engine, aka "Scripting Engine Memory Corruption Vulnerability...

7.6CVSS7.4AI score0.20493EPSS

Exploits0References9Affected Software1

OSV•added 2022/05/14 2:23 a.m.•35 views

GHSA-V9JG-M6G5-H3HH ChakraCore RCE Vulnerability

7.5CVSS7.2AI score0.75868EPSS

Exploits0References7

Github Security Blog•added 2022/05/14 2:23 a.m.•28 views

ChakraCore RCE Vulnerability

7.6CVSS7.7AI score0.16801EPSS

Exploits0References7Affected Software1

OSV•added 2022/05/14 2:22 a.m.•24 views

GHSA-36C3-JCM2-RM3J ChakraCore RCE Vulnerability

7.5CVSS7.2AI score0.78999EPSS

Exploits0References6

OSV•added 2022/05/14 2:22 a.m.•23 views

GHSA-WCVC-RHFJ-997G ChakraCore RCE Vulnerability

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7200, CVE-2016-7201,...

7.5CVSS8.4AI score0.69429EPSS

Exploits11References8

OSV•added 2022/05/14 2:22 a.m.•28 views

GHSA-HH3V-5CHW-WGH7 ChakraCore RCE Vulnerability

7.5CVSS8.4AI score0.69291EPSS

Exploits1References8

Github Security Blog•added 2022/05/14 2:22 a.m.•22 views

ChakraCore RCE Vulnerability

7.6CVSS7.5AI score0.11931EPSS

Exploits11References7Affected Software1

OSV•added 2022/05/14 2:3 a.m.•22 views

GHSA-93C7-2942-3H47 ChakraCore information disclosure vulnerability

An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10...

4.2CVSS5.3AI score0.05649EPSS

Exploits0References7

OSV•added 2022/05/14 1:6 a.m.•26 views

GHSA-9QPF-V72J-J9QH ChakraCore vulnerable to remote code execution

ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.5CVSS8AI score0.73993EPSS

Exploits21References8

Github Security Blog•added 2022/05/14 1:6 a.m.•31 views

ChakraCore vulnerable to remote code execution

ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.4AI score0.73993EPSS

Exploits21References8Affected Software1

OSV•added 2022/05/14 1:6 a.m.•15 views

GHSA-C6R3-GHJW-HGRJ ChakraCore vulnerable to remote code execution

7.5CVSS7.9AI score0.73993EPSS

Exploits21References8

Github Security Blog•added 2022/05/13 1:53 a.m.•33 views

ChakraCore information disclosure vulnerability

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft browsers, aka "Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge...

4.3CVSS5.7AI score0.11388EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/13 1:53 a.m.•27 views

GHSA-W3QR-8V4R-592M ChakraCore information disclosure vulnerability

4.3CVSS5.5AI score0.11388EPSS

Exploits0References6

OSV•added 2022/05/13 1:48 a.m.•15 views

GHSA-FV8M-P45W-GF38 ChakraCore RCE Vulnerability

Microsoft ChakraCore allows an attacker to bypass Control Flow Guard CFG in conjunction with another vulnerability to run arbitrary code on a target system, due to how the Chakra scripting engine handles accessing memory, aka "Scripting Engine Security Feature Bypass"...

7.5CVSS7.3AI score0.27262EPSS

Exploits0References6

Github Security Blog•added 2022/05/13 1:48 a.m.•21 views

ChakraCore RCE Vulnerability

8.5CVSS6.9AI score0.27262EPSS

Exploits0References6Affected Software1

Github Security Blog•added 2022/05/13 1:42 a.m.•16 views

ChakraCore vulnerable to privilege escalation

ChakraCore allows an attacker to gain the same user rights as the current user, due to the way that the ChakraCore scripting engine handles objects in memory. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take...

10CVSS8.6AI score0.17164EPSS

Exploits0References8Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by