EPSS
Percentile
89.9%
Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, allowing a remote attacker to execute arbitrary code in the context of the authenticated user.
github.com/Microsoft/ChakraCore/pull/6016
github.com/Microsoft/ChakraCore/wiki/Roadmap#v1117
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0609