ChakraCore is vulnerable to remote code execution (RCE). This is due to how the scripting engine handles objects in memory, allowing a remote attacker to execute arbitrary code in the context of the current user.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.chakracore | le | 1.11.5 | |
microsoft.chakracore.vc140 | le | 1.11.5 | |
microsoft.chakracore | le | 1.11.5 | |
microsoft.chakracore.vc140 | le | 1.11.5 |