Lucene search
K

9 matches found

OSV
OSV
added 2022/05/13 1:21 a.m.21 views

GHSA-W9RV-WWXR-VC3Q ChakraCore RCE Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8617,...

7.5CVSS7.5AI score0.23177EPSS
Exploits0References5
Circl
Circl
added 2019/01/18 12:0 a.m.27 views

CVE-2018-8617

creationtimestamp| type| source ---|---|--- 2019-01-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46202 2023-12-10 18:51:29+00:00| seen| https://t.me/arpsyndicate/1677...

7.6CVSS7.6AI score0.62483EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2019/01/17 12:0 a.m.59 views

Microsoft Edge Chakra InlineArrayPush Type Confusion

Microsoft Edge: Chakra: Type confusion with InlineArrayPush CVE-2018-8617 In Chakra, if you add a numeric property to an object having inlined properties, it will start transition to a new type where the space for some of previously inlined properties become for the pointer to the property slots...

7.6CVSS0.5AI score0.62483EPSS
Exploits3
Veracode
Veracode
added 2018/12/12 4:5 a.m.36 views

Remote Code Execution (RCE)

Microsoft.ChakraCore is vulnerable to remote code execution. This is due to an out-of-bounds in Edge WIP which would allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8583, CVE-2018-8617, CVE-2018-8618, CVE-2018-8624...

7.5CVSS7.5AI score0.62483EPSS
Exploits3References3Affected Software2
Prion
Prion
added 2018/12/12 12:29 a.m.31 views

Remote code execution

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8617, CVE-2018-8618,...

7.6CVSS7.4AI score0.62483EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2018/12/12 12:0 a.m.75 views

Microsoft Windows Multiple Vulnerabilities (KB4471329)

This host is missing a critical security update according to Microsoft KB4471329 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.69214EPSS
Exploits10References3
CVE
CVE
added 2018/12/12 12:0 a.m.118 views

CVE-2018-8617

CVE-2018-8617 affects Microsoft Edge and ChakraCore, with a remote code execution vector tied to the Chakra scripting engine’s handling of in‑memory objects. The public description states the root cause as memory corruption within Chakra, leading to high-severity impact (CVE base score 7.5/7.6) a...

7.6CVSS6.8AI score0.62483EPSS
Exploits3References3Affected Software1
Kaspersky
Kaspersky
added 2018/12/11 12:0 a.m.97 views

KLA11388 Multiple vulnerabilities in Microsoft Browsers

Multiple serious vulnerabilities were found in Microsoft Browsers Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially craft...

7.6CVSS8.9AI score0.69214EPSS
Exploits10References23
Check Point Advisories
Check Point Advisories
added 2018/12/11 12:0 a.m.4 views

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8617)

A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.4AI score0.62483EPSS
Exploits3
Rows per page
Query Builder