EPSS
Percentile
90.1%
Microsoft ChakraCore is susceptible to remote code execution. During reparsing of coroutines, it does not maintain the same scoping number for coroutines, causing the register with yield data to change.
github.com/microsoft/ChakraCore/commit/972584709518380a4a3c2410b5fa151f6f0239b1
github.com/Microsoft/ChakraCore/releases/tag/v1.11.9
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0916