Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2018/09/18 12:0 a.m.53 views

Microsoft Edge Chakra PathTypeHandlerBase::SetAttributesHelper Type Confusion

Microsoft Edge: Chakra: Type confusion with PathTypeHandlerBase::SetAttributesHelper CVE-2018-8384 Here's a snippet of PathTypeHandlerBase::SetAttributesHelper. PathTypeHandlerBase predTypeHandler = this; DynamicType currentType = instance-GetDynamicType; while predTypeHandler-GetPathLength...

0.1AI score0.6211EPSS
Exploits2
Circl
Circl
added 2018/09/18 12:0 a.m.15 views

CVE-2018-8384

creationtimestamp| type| source ---|---|--- 2018-09-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45431...

7.6CVSS6.8AI score0.6211EPSS
Exploits2References1
Veracode
Veracode
added 2018/08/16 7:48 a.m.23 views

Arbitrary Code Execution

microsoft.chakracore is vulnerable to arbitrary code execution. The lack of type checking can lead to memory corruption or arbitrary code being executed. This vulnerability affects Microsoft Edge. This CVE ID is different from CVE-2018-8380, CVE-2018-8381, CVE-2018-8384...

7.5CVSS7.9AI score0.6211EPSS
Exploits2References5Affected Software2
OSV
OSV
added 2018/08/15 5:29 p.m.4 views

CVE-2018-8384

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8266, CVE-2018-8380, CVE-2018-8381...

7.5CVSS6.3AI score0.6211EPSS
Exploits2References3
NVD
NVD
added 2018/08/15 5:29 p.m.27 views

CVE-2018-8384

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8266, CVE-2018-8380, CVE-2018-8381...

7.6CVSS7.5AI score0.6211EPSS
Exploits2References3
CVE
CVE
added 2018/08/15 5:0 p.m.75 views

CVE-2018-8384

CVE-2018-8384 describes a remote code execution vulnerability in the Chakra scripting engine used by Microsoft Edge/ChakraCore, caused by memory handling of objects that can lead to memory corruption. The issue is labeled as a ChakraCore/Edge memory corruption vulnerability with a high-severity i...

7.6CVSS7.4AI score0.6211EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder