ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka âChakra Scripting Engine Memory Corruption Vulnerabilityâ. This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0934, CVE-2018-0936, and CVE-2018-0937.
github.com/chakra-core/ChakraCore
github.com/chakra-core/ChakraCore/commit/6d5532d867202bc2e1b8b6b8c6f9c1c44a0f5ab8
nvd.nist.gov/vuln/detail/CVE-2018-0933
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0933
web.archive.org/web/20201021051922/www.securitytracker.com/id/1040507
web.archive.org/web/20210124144714/www.securityfocus.com/bid/103274
www.exploit-db.com/exploits/44396