A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka âScripting Engine Memory Corruption Vulnerability.â This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-8288, CVE-2018-8291, CVE-2018-8296, CVE-2018-8298.
github.com/chakra-core/ChakraCore
github.com/chakra-core/ChakraCore/commit/fa89a7031e75ca8b4a595765e897e8fc0d9fae76
github.com/chakra-core/ChakraCore/pull/5444
nvd.nist.gov/vuln/detail/CVE-2018-8287
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8287
web.archive.org/web/20210125211352/www.securityfocus.com/bid/104634
web.archive.org/web/20211202002348/www.securitytracker.com/id/1041256
web.archive.org/web/20220120050525/www.securitytracker.com/id/1041258