Lucene search
Veracode Vulnerability DatabaseVERACODE:25490HistoryMay 26, 2020 - 9:37 a.m.
Remote Code Execution (RCE)
2020-05-2609:37:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
0.017 Low
EPSS
Percentile
88.0%
Microsoft Chakracore is vulnerable to remote code execution (RCE). It does not properly handle the JIT bails out when there is an object marked as temporary during an implicit call, allowing objects stored on the stack to be used outside of the function during the DeadStore pass of GlobOpt.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.11.18 | |
| microsoft.chakracore.vc140 | le | 1.11.18 |
References
Related
mscve
mscve
Chakra Scripting Engine Memory Corruption Vulnerability
2020-05-12 07:00:00
osv
osv
ChakraCore Remote Code Execution Vulnerability
2022-05-24 17:18:23
cvelist
cvelist
CVE-2020-1037
2020-05-21 22:52:48
nvd
nvd
CVE-2020-1037
2020-05-21 23:15:11
github
github
ChakraCore Remote Code Execution Vulnerability
2022-05-24 17:18:23
cve
cve
CVE-2020-1037
2020-05-21 23:15:11
prion
prion
Remote code execution
2020-05-21 23:15:00
kaspersky
kaspersky
KLA11771 Multiple vulnerabilities in Microsoft Internet Explorer and Edge
2020-05-12 00:00:00
nessus
nessus
KB4556826: Windows 10 May 2020 Security Update
2020-05-12 00:00:00
KB4556813: Windows 10 Version 1607 and Windows Server 2016 May 2020 Security Update
2020-05-12 00:00:00
KB4556812: Windows 10 Version 1709 May 2020 Security Update
2020-05-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4556826)
2020-05-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4556813)
2020-05-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4556807)
2020-05-13 00:00:00
mskb
mskb
May 12, 2020âKB4556826 (OS Build 10240.18575)
2020-05-12 07:00:00
May 12, 2020âKB4556813 (OS Build 14393.3686)
2020-05-12 07:00:00
May 12, 2020âKB4556812 (OS Build 16299.1868)
2020-05-12 07:00:00
