0.021 Low
EPSS
Percentile
89.3%
Microsoft Chakra Core is vulnerable to remote code execution (RCE). The vulnerability exists because Yield or Await was allowed in parameter scope.
Yield
Await
github.com/microsoft/ChakraCore/pull/6375
github.com/Microsoft/ChakraCore/wiki/Roadmap#v11116
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0710