Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Veracode
Veracodeadded 2018/12/05 2:21 a.m.26 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due a lack of validation for return objects without any properties in AsmJs.cpp, which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0015...

7.5CVSS7.9AI score0.78538EPSS
Exploits4References4Affected Software2
rapid7community
rapid7communityadded 2017/08/08 8:3 p.m.172 views

Patch Tuesday - August 2017

It was a busy month this month with a total of 48 security issues fixed. All of these have a severity of Critical or Important with Remote Code Execution vulnerabilities again figuring highly, particularly for Microsoft Edge. There were also a few publicly disclosed vulnerabilities that were fixe...

8.5CVSS7.8AI score0.31893EPSS
Exploits4
0day.today
0day.todayadded 2017/03/19 12:0 a.m.53 views

Microsoft Edge Charkra Incorrect Jit Optimization Exploit

Exploit for windows platform in category dos / poc Microsoft Edge: Chakra incorrect jit optimization with TypedArray setter. CVE-2017-0071 PoC: "use strict"; function funca, b, c a0 = 1.2; b0 = c; a0 = ; ----------------------- 2 return 0; ; a0.toString; main; In the above code, Chakra assumes th...

7.6CVSS7.7AI score0.31893EPSS
Exploits2
CVE
CVEadded 2017/03/17 12:0 a.m.109 views

CVE-2017-0071

CVE-2017-0134 is tied to a remote code execution vulnerability in Microsoft Edge’s scripting engine, arising from how in-memory objects are handled. The checkpoint advisory CPAI-2018-0053 states that a remote, unauthenticated attacker could lure a user to a crafted page to trigger memory corrupti...

7.6CVSS7.9AI score0.31893EPSS
Exploits2References3Affected Software1
Packet Storm
Packet Stormadded 2017/03/16 12:0 a.m.55 views

Microsoft Edge Charkra Incorrect Jit Optimization

Microsoft Edge: Chakra incorrect jit optimization with TypedArray setter. CVE-2017-0071 PoC: "use strict"; function funca, b, c a0 = 1.2; b0 = c; a0 = ; ----------------------- 2 return 0; ; a0.toString; main; In the above code, Chakra assumes that the type of |a| will be still a native float arr...

0.7AI score0.31893EPSS
Exploits2
Kaspersky
Kasperskyadded 2017/03/14 12:0 a.m.229 views

KLA10968 Multiple vulnerabilities in Microsoft Edge

Multiple serious vulnerabilities have been found in Microsoft Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information and bypass security restrictions. Below is a complete list of vulnerabilities: 1. An incorrect handling of...

8.1CVSS9.1AI score0.80386EPSS
Exploits18References38
Tenable Nessus
Tenable Nessusadded 2017/03/14 12:0 a.m.190 views

MS17-007: Cumulative Security Update for Microsoft Edge (4013071)

The version of Microsoft Edge installed on the remote Windows host is missing Cumulative Security Update 4013071. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities. An unauthenticated, remote attacker can exploit these vulnerabilities by...

8.1CVSS7.5AI score0.80386EPSS
Exploits18References33
Rows per page
Query Builder