chakracore is vulnerable to remote code execution. The vulnerability exists due to a memory error when StackScriptFunction::BoxState::Box()
, in lib/Runtime/Library/StackScriptFunction.cpp
, is called.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.chakracore.vc140 | le | 1.11.21 | |
microsoft.chakracore | le | 1.11.21 |