Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2021/03/29 8:58 p.m.55 views

Out-of-bounds write in ChakraCore

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1131, CVE-2019-1139, CVE-2019-1140, CVE-2019-1141, CVE-2019-1195...

7.6CVSS6AI score0.01934EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/03/29 8:58 p.m.34 views

GHSA-HFM2-FFFH-V47V Out-of-bounds write in ChakraCore

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1131, CVE-2019-1139, CVE-2019-1140, CVE-2019-1141, CVE-2019-1195...

7.5CVSS6.3AI score0.01934EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2021/03/29 8:57 p.m.54 views

Out-of-bounds write in Microsoft.ChakraCore

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1131, CVE-2019-1139, CVE-2019-1140, CVE-2019-1195, CVE-2019-1196...

7.6CVSS6AI score0.01883EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/08/14 8:55 p.m.39 views

CVE-2019-1131 Chakra Scripting Engine Memory Corruption Vulnerability

...

4.2CVSS6.2AI score0.01883EPSS
Exploits0References1
CVE
CVE
added 2019/08/14 8:55 p.m.117 views

CVE-2019-1131

CVE-2019-1131 is a remote code execution vulnerability in Microsoft Edge’s Chakra scripting engine, caused by memory handling of objects in HTML-based edge scenarios. An attacker could run arbitrary code with the current user’s privileges via a crafted web page or compromised site; exploitation r...

7.6CVSS7.5AI score0.01883EPSS
Exploits0References1Affected Software1
Symantec
Symantec
added 2019/08/13 12:0 a.m.33 views

Microsoft Edge Scripting Engine CVE-2019-1131 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

7.6CVSS0.5AI score0.01883EPSS
Exploits0
Rows per page
Query Builder