Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:6927
HistoryJul 04, 2018 - 8:44 a.m.

Remote Code Execution (RCE)

2018-07-0408:44:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

0.951 High

EPSS

Percentile

99.3%

microsoft.chakracore is vulnerable to remote code execution. This is due to a Use-After-Free (UAF) vulnerability in JavascriptError::SetErrorMessageProperties which could cause memory corruption and allow an attacker to execute code in the context of the current user. This CVE ID is different from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.