Lucene search
Veracode Vulnerability DatabaseVERACODE:6873HistoryJun 28, 2018 - 6:40 a.m.
Remote Code Execution (RCE)
2018-06-2806:40:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.955 High
EPSS
Percentile
99.4%
Microsoft ChakraCore is vulnerable to remote code execution. This is due to a type confusion in boundfunction handling which could lead to memory corruption and allow an attacker in memory to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951, CVE-2018-0953, CVE-2018-0954, CVE-2018-0955, CVE-2018-1022, CVE-2018-8114, CVE-2018-8122, CVE-2018-8128, CVE-2018-8137.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.8.3 | |
| microsoft.chakracore.vc140 | le | 1.8.3 |
Related
cve
cve
veracode
veracode
Remote Code Execution (RCE)
2018-06-29 04:40:18
Remote Code Execution (RCE)
2018-06-28 06:50:17
Remote Code Execution (RCE)
2018-06-28 07:40:56
osv
osv
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
CVE-2018-0946
2018-05-09 19:29:00
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:18:49
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
prion
prion
Remote code execution
2018-05-09 19:29:00
Remote code execution
2018-05-09 19:29:00
Remote code execution
2018-05-09 19:29:00
cvelist
cvelist
nvd
nvd
mskb
mskb
Cumulative security update for Internet Explorer: May 08, 2018
2018-05-08 07:00:00
May 8, 2018âKB4103721 (OS Build 17134.48)
2018-05-08 07:00:00
May 8, 2018âKB4103731 (OS Build 15063.1088)
2018-05-08 07:00:00
nessus
nessus
Security Updates for Internet Explorer (May 2018)
2018-05-08 00:00:00
KB4103721: Windows 10 Version 1803 and Windows Server Version 1803 May 2018 Security Update
2018-05-08 00:00:00
KB4103731: Windows 10 Version 1703 May 2018 Security Update
2018-05-08 00:00:00
kaspersky
kaspersky
KLA11247 Multiple vulnerabilities in Microsoft Browsers
2018-05-08 00:00:00
KLA11894 Multiple vulnerabilities in Microsoft Products (ESU)
2018-05-08 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4103721)
2018-05-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4103731)
2018-05-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4103723)
2018-05-09 00:00:00
symantec
symantec
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Memory Corruption (CVE-2018-8114)
2018-05-08 00:00:00
Microsoft Internet Explorer Memory Corruption (CVE-2018-8122)
2018-05-08 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-8137)
2018-05-08 00:00:00
zdi
zdi
zdt
zdt
Microsoft Edge Chakra JIT - BoundFunction::NewInstance Out-of-Bounds Read Exploit
2018-07-12 00:00:00
Microsoft Edge Chakra JIT - Magic Value Type Confusion Exploit
2018-05-23 00:00:00
packetstorm
packetstorm
Microsoft Edge Chakra JIT BoundFunction::NewInstance Bug
2018-07-12 00:00:00
seebug
seebug
Microsoft Edge: Chakra: Cross context bug(CVE-2018-0946)
2018-06-08 00:00:00
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - May 2018
2018-05-08 12:02:00