Lucene search
Veracode Vulnerability DatabaseVERACODE:6888HistoryJun 29, 2018 - 4:40 a.m.
Remote Code Execution (RCE)
2018-06-2904:40:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.955 High
EPSS
Percentile
99.4%
microsoft.chakracore is vulnerable to remote code execution. This is due to a Use-After-Free (UAF) vulnerability in ServerScriptContext which could lead to memory corruption and allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-0945, CVE-2018-0951, CVE-2018-0953, CVE-2018-0954, CVE-2018-0955, CVE-2018-1022, CVE-2018-8114, CVE-2018-8122, CVE-2018-8128, CVE-2018-8137, CVE-2018-8139.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.8.3 | |
| microsoft.chakracore.vc140 | le | 1.8.3 |
Related
cve
cve
veracode
veracode
Remote Code Execution (RCE)
2018-06-28 06:50:17
Remote Code Execution (RCE)
2018-06-28 07:06:13
Remote Code Execution (RCE)
2018-06-29 04:27:26
osv
osv
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
CVE-2018-8139
2018-05-09 19:29:01
CVE-2018-1022
2018-05-09 19:29:00
prion
prion
Remote code execution
2018-05-09 19:29:00
Remote code execution
2018-05-09 19:29:00
Remote code execution
2018-05-09 19:29:00
cvelist
cvelist
nvd
nvd
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
ChakraCore RCE Vulnerability
2022-05-13 01:20:39
ChakraCore RCE Vulnerability
2022-05-13 01:20:40
mskb
mskb
Cumulative security update for Internet Explorer: May 08, 2018
2018-05-08 07:00:00
May 8, 2018âKB4103721 (OS Build 17134.48)
2018-05-08 07:00:00
May 8, 2018âKB4103731 (OS Build 15063.1088)
2018-05-08 07:00:00
nessus
nessus
Security Updates for Internet Explorer (May 2018)
2018-05-08 00:00:00
KB4103721: Windows 10 Version 1803 and Windows Server Version 1803 May 2018 Security Update
2018-05-08 00:00:00
KB4103731: Windows 10 Version 1703 May 2018 Security Update
2018-05-08 00:00:00
kaspersky
kaspersky
KLA11247 Multiple vulnerabilities in Microsoft Browsers
2018-05-08 00:00:00
KLA11894 Multiple vulnerabilities in Microsoft Products (ESU)
2018-05-08 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4103721)
2018-05-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4103731)
2018-05-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4103723)
2018-05-09 00:00:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Memory Corruption (CVE-2018-8122)
2018-05-08 00:00:00
Microsoft Internet Explorer Memory Corruption (CVE-2018-8114)
2018-05-08 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-8137)
2018-05-08 00:00:00
symantec
symantec
zdi
zdi
zdt
zdt
Microsoft Edge Chakra JIT - BoundFunction::NewInstance Out-of-Bounds Read Exploit
2018-07-12 00:00:00
Microsoft Edge Chakra JIT - Magic Value Type Confusion Exploit
2018-05-23 00:00:00
packetstorm
packetstorm
Microsoft Edge Chakra JIT BoundFunction::NewInstance Bug
2018-07-12 00:00:00
seebug
seebug
Microsoft Edge: Chakra: Cross context bug(CVE-2018-0946)
2018-06-08 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - May 2018
2018-05-08 12:02:00
trendmicroblog
trendmicroblog