9 matches found
GHSA-W9RV-WWXR-VC3Q ChakraCore RCE Vulnerability
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8617,...
CVE-2018-8617
creationtimestamp| type| source ---|---|--- 2019-01-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46202 2023-12-10 18:51:29+00:00| seen| https://t.me/arpsyndicate/1677...
Microsoft Edge Chakra InlineArrayPush Type Confusion
Microsoft Edge: Chakra: Type confusion with InlineArrayPush CVE-2018-8617 In Chakra, if you add a numeric property to an object having inlined properties, it will start transition to a new type where the space for some of previously inlined properties become for the pointer to the property slots...
Remote Code Execution (RCE)
Microsoft.ChakraCore is vulnerable to remote code execution. This is due to an out-of-bounds in Edge WIP which would allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8583, CVE-2018-8617, CVE-2018-8618, CVE-2018-8624...
Remote code execution
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8617, CVE-2018-8618,...
Microsoft Windows Multiple Vulnerabilities (KB4471329)
This host is missing a critical security update according to Microsoft KB4471329 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-8617
CVE-2018-8617 affects Microsoft Edge and ChakraCore, with a remote code execution vector tied to the Chakra scripting engine’s handling of in‑memory objects. The public description states the root cause as memory corruption within Chakra, leading to high-severity impact (CVE base score 7.5/7.6) a...
KLA11388 Multiple vulnerabilities in Microsoft Browsers
Multiple serious vulnerabilities were found in Microsoft Browsers Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially craft...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8617)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...