ChakraCore is vulnerable to remote code execution (RCE). This is due to how the scripting engine handles objects in memory, allowing a remote attacker to execute arbitrary code in the context of the current user. This CVE ID is different from CVE-2019-1004, CVE-2019-1056 and CVE-2019-1059.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.chakracore | le | 1.11.10 | |
microsoft.chakracore.vc140 | le | 1.11.10 |