Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7963
HistoryDec 05, 2018 - 1:59 a.m.

Remote Code Execution (RCE)

2018-12-0501:59:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7

0.923 High

EPSS

Percentile

99.0%

Microsoft ChakraCore is vulnerable to remote code execution. This is due to an incorrect assumption in JIT about array nativeness which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0010, CVE-2017-0015, CVE-2017-0032, CVE-2017-0035, CVE-2017-0067, CVE-2017-0070, CVE-2017-0071, CVE-2017-0094, CVE-2017-0131, CVE-2017-0133, CVE-2017-0134, CVE-2017-0136, CVE-2017-0137, CVE-2017-0138, CVE-2017-0141, CVE-2017-0150, and CVE-2017-0151.