Lucene search
Veracode Vulnerability DatabaseVERACODE:7963HistoryDec 05, 2018 - 1:59 a.m.
Remote Code Execution (RCE)
2018-12-0501:59:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.923 High
EPSS
Percentile
99.0%
Microsoft ChakraCore is vulnerable to remote code execution. This is due to an incorrect assumption in JIT about array nativeness which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0010, CVE-2017-0015, CVE-2017-0032, CVE-2017-0035, CVE-2017-0067, CVE-2017-0070, CVE-2017-0071, CVE-2017-0094, CVE-2017-0131, CVE-2017-0133, CVE-2017-0134, CVE-2017-0136, CVE-2017-0137, CVE-2017-0138, CVE-2017-0141, CVE-2017-0150, and CVE-2017-0151.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.4.1 | |
| microsoft.chakracore.vc140 | eq | 1.4.1 |
Related
cve
cve
veracode
veracode
Remote Code Execution (RCE)
2018-12-05 01:42:51
Remote Code Execution (RCE)
2018-12-05 02:43:23
Remote Code Execution (RCE)
2018-12-05 01:15:39
prion
prion
Remote code execution
2017-03-17 00:59:00
Remote code execution
2017-03-17 00:59:00
Remote code execution
2017-03-17 00:59:00
cvelist
cvelist
nvd
nvd
nessus
nessus
MS17-007: Cumulative Security Update for Microsoft Edge (4013071)
2017-03-14 00:00:00
kaspersky
kaspersky
KLA10968 Multiple vulnerabilities in Microsoft Edge
2017-03-14 00:00:00
KLA10967 Multiple vulnerabilities in Microsoft Browser
2017-03-14 00:00:00
openvas
openvas
Microsoft Edge Multiple Vulnerabilities (4013071)
2017-03-15 00:00:00
mskb
mskb
MS17-007: Cumulative security update for Microsoft Edge: March 14, 2017
2017-03-14 00:00:00
March 14, 2017âKB4013198 (OS Build 10586.839)
2017-03-14 07:00:00
March 14, 2017âKB4013429 (OS Build 14393.953)
2017-03-14 07:00:00
symantec
symantec
zdi
zdi
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2017-03-14 07:00:00
Scripting Engine Memory Corruption Vulnerability
2017-03-14 07:00:00
Scripting Engine Memory Corruption Vulnerability
2017-03-14 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-0134)
2018-02-05 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (MS17-007: CVE-2017-0141)
2017-03-14 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (MS17-007: CVE-2017-0133)
2017-03-14 00:00:00
zdt
zdt
Microsoft Edge 38.14393.0.0 - JavaScript Engine Use-After-Free Exploit
2017-03-16 00:00:00
Microsoft Edge Charkra Incorrect Jit Optimization Exploit
2017-03-19 00:00:00
seebug
seebug
packetstorm
packetstorm
Microsoft Edge Charkra Incorrect Jit Optimization
2017-03-16 00:00:00
rapid7community
rapid7community
Patch Tuesday - August 2017
2017-08-08 20:03:46