5 matches found
CVE-2019-0648
CVE-2019-0648 describes an information-disclosure vulnerability in Chakra (the scripting engine) where memory contents could be exposed if an attacker can locate the memory object. The connected documents consistently tie this to ChakraCore/Edge, noting that the scripting engine does not properly...
Information disclosure
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0648...
Microsoft Edge Scripting Engine Information Disclosure (CVE-2019-0648)
An information disclosure vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
KLA11422 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information, gain privileges, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A memory...
KB4487044: Windows 10 Version 1809 and Windows Server 2019 February 2019 Security Update
The remote Windows host is missing security update 4487044. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file. An attacker who successful...