Lucene search
Veracode Vulnerability DatabaseVERACODE:6964HistoryJul 06, 2018 - 4:31 a.m.
Remote Code Execution (RCE)
2018-07-0604:31:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.946 High
EPSS
Percentile
99.3%
microsoft.chakracore is vulnerable to remote code execution. This happens because it does have correct GenerateBailOut calling patterns during compilation, causing memory corruption.This CVE ID is different from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11800, CVE-2017-11801, CVE-2017-11802, CVE-2017-11804, CVE-2017-11805, CVE-2017-11806, CVE-2017-11807, CVE-2017-11808, CVE-2017-11809, CVE-2017-11810, CVE-2017-11811, CVE-2017-11812, and CVE-2017-11821. This vulnerability also affects Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.7.2 | |
| microsoft.chakracore.vc140 | le | 1.7.2 |
Related
prion
prion
Information disclosure
2017-10-13 13:29:00
Memory corruption
2017-10-13 13:29:00
Memory corruption
2017-10-13 13:29:00
osv
osv
ChakraCore RCE Vulnerability
2022-05-17 00:32:03
CVE-2017-11808
2017-10-13 13:29:01
ChakraCore RCE Vulnerability
2022-05-17 00:32:27
nvd
nvd
cve
cve
veracode
veracode
Remote Code Execution (RCE)
2018-07-06 01:13:45
Remote Code Execution (RCE)
2018-11-16 02:36:58
Remote Code Execution (RCE)
2018-07-06 03:57:15
github
github
ChakraCore RCE Vulnerability
2022-05-17 00:32:12
ChakraCore RCE Vulnerability
2022-05-17 00:32:03
ChakraCore RCE Vulnerability
2022-05-17 00:32:03
cvelist
cvelist
kaspersky
kaspersky
KLA11112 Multiple vulnerabilities in Microsoft Browsers
2017-10-10 00:00:00
nessus
nessus
KB4041676: Windows 10 Version 1703 October 2017 Cumulative Update (KRACK)
2017-10-10 00:00:00
KB4041691: Windows 10 Version 1607 and Windows Server 2016 October 2017 Cumulative Update (KRACK)
2017-10-10 00:00:00
KB4041689: Windows 10 Version 1511 October 2017 Cumulative Update (KRACK)
2017-10-10 00:00:00
mskb
mskb
October 10, 2017âKB4041676 (OS Build 15063.674)
2017-10-16 07:00:00
October 10, 2017âKB4041691 (OS Build 14393.1770)
2017-10-16 07:00:00
October 10, 2017âKB4041689 (OS Build 10586.1176)
2017-10-16 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4041676)
2017-10-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4041689)
2017-10-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4041691)
2017-10-11 00:00:00
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - October 2017
2017-10-10 13:25:00
zdi
zdi
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2017-10-10 07:00:00
Scripting Engine Memory Corruption Vulnerability
2017-10-10 07:00:00
Scripting Engine Memory Corruption Vulnerability
2017-10-10 07:00:00
seebug
seebug
symantec
symantec
packetstorm
packetstorm
Microsoft Edge Chakra JIT Incorrect GenerateBailOut Calling Patterns
2017-10-14 00:00:00
Microsoft Edge Chakra JIT Failed RegexHelper::StringReplace Call
2017-10-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11798)
2017-10-10 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11802)
2017-10-16 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11800)
2017-10-10 00:00:00
zdt
zdt