Lucene search
K

9 matches found

Veracode
Veracode
added 2018/06/29 4:41 a.m.20 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to an unrestored bytecode register after bailout, which could lead to memory corruption and allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8130,...

7.5CVSS8.1AI score0.67233EPSS
Exploits7References5Affected Software2
seebug.org
seebug.org
added 2018/06/08 12:0 a.m.44 views

Microsoft Edge: Chakra: EntrySimpleObjectSlotGetter can have side effects(CVE-2018-8133)

function optw, arr arr0 = 1.1; let res = w.event; arr0 = 2.3023e-320; return res; let arr = 1.1; for let i = 0; i ::EntrySimpleObjectSlotGetter 00007fffd5cf3d50 // w.event 000001a880001235 48ffd0 call rax 000001a880001238 488b8e30bdf0ff mov rcx,qword ptr rsi-0F42D0h 000001a88000123f f2480f104158...

7.6CVSS7.7AI score0.5094EPSS
Exploits4
Circl
Circl
added 2018/05/31 12:0 a.m.24 views

CVE-2018-8133

creationtimestamp| type| source ---|---|--- 2018-05-31 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44817...

7.6CVSS6.7AI score0.5094EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2018/05/31 12:0 a.m.48 views

Microsoft Edge Chakra EntrySimpleObjectSlotGetter Type Confusion

Microsoft Edge: Chakra: EntrySimpleObjectSlotGetter can have side effects CVE-2018-8133 function optw, arr arr0 = 1.1; let res = w.event; arr0 = 2.3023e-320; return res; let arr = 1.1; for let i = 0; i ::EntrySimpleObjectSlotGetter 00007fffd5cf3d50 // w.event 000001a880001235 48ffd0 call rax...

0.6AI score0.5094EPSS
Exploits4
OSV
OSV
added 2018/05/09 7:29 p.m.19 views

CVE-2018-8133

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0943, CVE-2018-8130,...

7.5CVSS7.7AI score0.5094EPSS
Exploits4References4
CVE
CVE
added 2018/05/09 7:0 p.m.78 views

CVE-2018-8133

CVE-2018-8133 is a remote code execution vulnerability in the Chakra scripting engine’s memory handling, affecting Microsoft Edge and ChakraCore. The root cause is memory corruption within Chakra’s object handling, enabling an attacker to run arbitrary code in the context of the user. Multiple co...

7.6CVSS7.4AI score0.5094EPSS
Exploits4References4Affected Software1
OpenVAS
OpenVAS
added 2018/05/09 12:0 a.m.139 views

Microsoft Windows Multiple Vulnerabilities (KB4103723)

This host is missing a critical security update according to Microsoft KB4103723 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.87814EPSS
Exploits38References3
OpenVAS
OpenVAS
added 2018/05/09 12:0 a.m.172 views

Microsoft Windows Multiple Vulnerabilities (KB4103731)

This host is missing a critical security update according to Microsoft KB4103731 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.87814EPSS
Exploits39References3
Check Point Advisories
Check Point Advisories
added 2018/05/08 12:0 a.m.7 views

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8133)

A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.9AI score0.5094EPSS
Exploits4
Rows per page
Query Builder