Lucene search
K

14 matches found

OSV
OSV
added 2022/05/17 12:32 a.m.13 views

GHSA-PX6P-JXWR-27MC ChakraCore RCE Vulnerability

ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792,...

7.5CVSS7.8AI score0.08761EPSS
Exploits0References7
Veracode
Veracode
added 2018/07/06 3:32 a.m.23 views

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution. This happens because it allows redeferral of a called function in CrossSite.cpp, leading to a RCE. This CVE ID is different from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11799,...

7.5CVSS7.7AI score0.69163EPSS
Exploits20References5Affected Software2
Veracode
Veracode
added 2018/07/06 1:23 a.m.24 views

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution. This happens because the scripting engine does not properly handle the objects in memory if a non-int-type-specialized index operand on a switch table branch is used,causing memory corruption.This CVE ID is unique from CVE-2017-11792,...

7.5CVSS7.4AI score0.69163EPSS
Exploits20References7Affected Software2
Veracode
Veracode
added 2018/07/06 1:13 a.m.21 views

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution. This happens when the NewTarget flag is passed on proxy function call trap. This CVE ID is unique from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11799, CVE-2017-11800, CVE-2017-11801,...

7.5CVSS7.7AI score0.69163EPSS
Exploits20References6Affected Software2
Prion
Prion
added 2017/10/13 1:29 p.m.16 views

Memory corruption

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is uniqu...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3
Prion
Prion
added 2017/10/13 1:29 p.m.16 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3Affected Software1
NVD
NVD
added 2017/10/13 1:29 p.m.17 views

CVE-2017-11792

ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allow an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11793,...

7.6CVSS7.5AI score0.08761EPSS
Exploits0References3
Prion
Prion
added 2017/10/13 1:29 p.m.23 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792,...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3Affected Software1
Prion
Prion
added 2017/10/13 1:29 p.m.19 views

Memory corruption

ChakraCore and Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792,...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3Affected Software1
Prion
Prion
added 2017/10/13 1:29 p.m.15 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References4Affected Software1
Prion
Prion
added 2017/10/13 1:29 p.m.18 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References4Affected Software1
Prion
Prion
added 2017/10/13 1:29 p.m.16 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3
Cvelist
Cvelist
added 2017/10/13 1:0 p.m.27 views

CVE-2017-11792

ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allow an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11793,...

7.8AI score0.08761EPSS
Exploits0References3
CVE
CVE
added 2017/10/13 1:0 p.m.95 views

CVE-2017-11792

CVE-2017-11792 describes a memory-handling vulnerability in the ChakraCore scripting engine (used by Microsoft Edge) on Windows 10 version 1703 that allows an attacker to execute arbitrary code in the context of the current user. The connected advisories reference ChakraCore RCE/Memory Corruption...

7.6CVSS7.8AI score0.08761EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder