CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

850 matches found

CVE•added 2018/12/12 12:0 a.m.•94 views

CVE-2018-8583

CVE-2018-8583 describes a remote code execution vulnerability in the Chakra scripting engine’s handling of objects in memory, affecting Microsoft Edge and ChakraCore. The root cause is memory handling/obj management within Chakra leading to memory corruption that enables code execution. The CVSSv...

7.6CVSS6.8AI score0.44915EPSS

Exploits2References2Affected Software1

Cvelist•added 2018/12/12 12:0 a.m.•26 views

CVE-2018-8624

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8617,...

7.5AI score0.19249EPSS

Exploits2References2

OpenVAS•added 2018/12/12 12:0 a.m.•67 views

Microsoft Windows Multiple Vulnerabilities (KB4471324)

This host is missing a critical security update according to Microsoft KB4471324 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.90564EPSS

Exploits10References3

CVE•added 2018/12/12 12:0 a.m.•85 views

CVE-2018-8624

The entries describe CVE-2018-8624 as a remote code execution vulnerability in the Chakra scripting engine’s memory handling, affecting Microsoft Edge and ChakraCore. The root cause is memory corruption of in-memory objects; the vulnerability is exploitable remotely with network access and requir...

7.6CVSS6.8AI score0.19249EPSS

Exploits2References2Affected Software1

CNVD•added 2018/12/12 12:0 a.m.•4 views

Microsoft Edge Chakra Scripting Engine Memory Corruption Vulnerability (CNVD-2019-07385)

Edge is Microsoft's browser for Windows 10, characterized as fast and secure. Microsoft Edge suffers from a Chakra Scripting Engine Memory Corruption vulnerability that stems from a problem in the way the Chakra Scripting Engine handles objects in memory, which can be exploited by an attacker to...

7.6CVSS7.5AI score0.12605EPSS

Exploits0References1

CVE•added 2018/12/12 12:0 a.m.•76 views

CVE-2018-8618

CVE-2018-8618 describes a remote code execution VULNERABILITY in the Chakra scripting engine, caused by how it handles objects in memory. The issue affects Microsoft Edge and ChakraCore, with a memory corruption root cause that can enable code execution on affected systems. Connected advisories c...

7.6CVSS6.8AI score0.12605EPSS

Exploits2References2Affected Software1

Talos Blog•added 2018/12/11 10:35 a.m.•88 views

Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort coverage

Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 38 vulnerabilities, nine of which are rated “critical” and 29 that are considered “important.” There are no “moderate” or “low” vulnerabilities...

10CVSS1.5AI score0.90564EPSS

Exploits10

Microsoft CVE•added 2018/12/11 8:0 a.m.•27 views

Chakra Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.4AI score0.12605EPSS

Exploits0

Microsoft CVE•added 2018/12/11 8:0 a.m.•30 views

Chakra Scripting Engine Memory Corruption Vulnerability

7.6CVSS1.4AI score0.19249EPSS

Exploits2

Microsoft CVE•added 2018/12/11 8:0 a.m.•35 views

Chakra Scripting Engine Memory Corruption Vulnerability

7.6CVSS1.4AI score0.12605EPSS

Exploits2

Kaspersky•added 2018/12/11 12:0 a.m.•95 views

KLA11388 Multiple vulnerabilities in Microsoft Browsers

Multiple serious vulnerabilities were found in Microsoft Browsers Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially craft...

7.6CVSS8.9AI score0.90564EPSS

Exploits10References23

Check Point Advisories•added 2018/12/11 12:0 a.m.•2 views

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8629)

A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.4AI score0.44915EPSS

Exploits0

Tenable Nessus•added 2018/12/11 12:0 a.m.•168 views

KB4471321: Windows 10 Version 1607 and Windows Server 2016 December 2018 Security Update

The remote Windows host is missing security update 4471321. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly. An attacker who successfully exploited this vulnerability could...

10CVSS8.2AI score0.90564EPSS

Exploits10References22

Tenable Nessus•added 2018/12/11 12:0 a.m.•69 views

KB4471323: Windows 10 December 2018 Security Update

The remote Windows host is missing security update 4471323. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker...

10CVSS8.2AI score0.90564EPSS

Exploits10References17