Lucene search
Veracode Vulnerability DatabaseVERACODE:21959HistoryNov 18, 2019 - 1:36 a.m.
Remote Code Execution
2019-11-1801:36:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.971 High
EPSS
Percentile
99.8%
Microsoft.ChakraCore is vulnerable to remote code execution. This is due to the way the ChakraCore scripting engine handles objects in memory which could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. This CVE ID is different from CVE-2019-1426, CVE-2019-1428, CVE-2019-1429.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.11.14 | |
| microsoft.chakracore.vc140 | le | 1.11.14 | |
| microsoft.chakracore | le | 1.11.14 | |
| microsoft.chakracore.vc140 | le | 1.11.14 |
Related
cvelist
cvelist
nvd
nvd
prion
prion
Remote code execution
2019-11-12 19:15:00
Remote code execution
2019-11-12 19:15:00
Remote code execution
2019-11-12 19:15:00
cve
cve
attackerkb
attackerkb
CVE-2019-1428
2019-11-12 00:00:00
CVE-2020-0674
2020-02-11 00:00:00
veracode
veracode
Remote Code Execution
2019-11-18 01:28:12
Remote Code Execution
2019-11-18 01:40:53
osv
osv
kaspersky
kaspersky
KLA11605 Multiple vulnerabilities in Microsoft Browser
2019-11-12 00:00:00
KLA11871 Multiple vulnerabilities in Microsoft Products (ESU)
2019-11-12 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer jscript.dll Use After Free (CVE-2019-1429)
2020-03-01 00:00:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2019-11-12 08:00:00
Scripting Engine Memory Corruption Vulnerability
2019-11-12 08:00:00
Scripting Engine Memory Corruption Vulnerability
2019-11-12 08:00:00
zdt
zdt
packetstorm
packetstorm
Microsoft Internet Explorer Use-After-Free
2019-11-21 00:00:00
symantec
symantec
cisa_kev
cisa_kev
Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
2021-11-03 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: November 12, 2019
2019-11-12 08:00:00
November 12, 2019βKB4524570 (OS Builds 18362.476 and 18363.476) - EXPIRED
2019-11-12 08:00:00
November 12, 2019βKB4523205 (OS Build 17763.864)
2019-11-12 08:00:00
nessus
nessus
Security Updates for Internet Explorer (November 2019)
2019-11-12 00:00:00
KB4525236: Windows 10 Version 1607 and Windows Server 2016 November 2019 Security Update
2019-11-12 00:00:00
KB4525232: Windows 10 November 2019 Security Update
2019-11-12 00:00:00
krebs
krebs
Patch Tuesday, November 2019 Edition
2019-11-12 22:04:32
threatpost
threatpost
Microsoft Patches RCE Bug Actively Under Attack
2019-11-12 21:35:20
Nation-State Attacks Drop in Latest Google Analysis
2020-03-30 20:53:22
securelist
securelist
Internet Explorer and Windows zero-day exploits used in Operation PowerFall
2020-08-12 07:00:28
IT threat evolution Q2 2020
2020-09-03 10:00:20
Magnitude exploit kit β evolution
2020-06-24 10:00:16
qualysblog
qualysblog
googleprojectzero
googleprojectzero
Root Cause Analyses for 0-day In-the-Wild Exploits
2020-07-29 00:00:00
Detection Deficit: A Year in Review of 0-days Used In-The-Wild in 2019
2020-07-29 00:00:00
DΓ©jΓ vu-lnerability
2021-02-03 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4523205)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4525236)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4525241)
2019-11-13 00:00:00
talosblog
talosblog