Lucene search
Veracode Vulnerability DatabaseVERACODE:7029HistoryJul 11, 2018 - 9:25 a.m.
Remote Code Execution (RCE)
2018-07-1109:25:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.002 Low
EPSS
Percentile
61.1%
microsoft.chakracore is vulnerable to remote code execution (RCE) attacks. A malicious user can pass bad arguments to the ServerAddDOMFastPathHelper method in JITServer.cpp which causes an out-of-bound write leading to arbitrary code execution.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.10.0 | |
| microsoft.chakracore.vc140 | le | 1.10.0 |
Related
prion
prion
Security feature bypass
2018-07-11 00:29:00
nvd
nvd
CVE-2018-8276
2018-07-11 00:29:00
osv
osv
ChakraCore Security Bypass
2022-05-13 01:53:37
mscve
mscve
Scripting Engine Security Feature Bypass Vulnerability
2018-07-10 07:00:00
github
github
ChakraCore Security Bypass
2022-05-13 01:53:37
cve
cve
CVE-2018-8276
2018-07-11 00:29:00
symantec
symantec
cvelist
cvelist
CVE-2018-8276
2018-07-11 00:00:00
kaspersky
kaspersky
KLA11290 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2018-07-10 00:00:00
nessus
nessus
KB4338826: Windows 10 Version 1703 July 2018 Security Update
2018-07-10 00:00:00
mskb
mskb
July 16, 2018âKB4345420 (OS Build 16299.551)
2018-07-10 07:00:00
July 10, 2018âKB4338826 (OS Build 15063.1206)
2018-07-10 07:00:00
July 16, 2018âKB4345419 (OS Build 15063.1209)
2018-07-10 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4338819)
2018-07-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4338826)
2018-07-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4338825)
2018-07-11 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - July 2018
2018-07-10 10:36:00
trendmicroblog
trendmicroblog
Zero-Day Coverage Update â Week of July 9, 2018
2018-07-13 14:10:20