Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2022/05/13 1:20 a.m.29 views

ChakraCore RCE Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8280, CVE-2018-8286,...

7.6CVSS7AI score0.19229EPSS
Exploits0References7Affected Software1
Veracode
Veracode
added 2018/07/11 8:54 a.m.22 views

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution RCE attacks. The attack exists due to a detached buffer bug that causes arbitrary memory reading and writing that can cause arbitrary code to be executed. This CVE is unique from CVE-2018-8286, CVE-2018-8290, CVE-2018-8294...

7.5CVSS8AI score0.19229EPSS
Exploits0References5Affected Software2
Prion
Prion
added 2018/07/11 12:29 a.m.20 views

Remote code execution

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8286, CVE-2018-8290,...

7.6CVSS7.4AI score0.19229EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2018/07/11 12:0 a.m.68 views

CVE-2018-8286

CVE-2018-8286 is a remote code execution vulnerability in the Chakra scripting engine, affecting Microsoft Edge and ChakraCore. The issue stems from how the Chakra engine handles objects in memory, described in connected GitHub advisories as the “Chakra Scripting Engine Memory Corruption Vulnerab...

7.6CVSS6.4AI score0.19229EPSS
Exploits0References3Affected Software1
Symantec
Symantec
added 2018/07/10 12:0 a.m.23 views

Microsoft Edge Scripting Engine CVE-2018-8286 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.5AI score0.19229EPSS
Exploits0References1
Rows per page
Query Builder