Lucene search
Veracode Vulnerability DatabaseVERACODE:7933HistoryDec 04, 2018 - 12:39 p.m.
Remote Code Execution (RCE)
2018-12-0412:39:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.953 High
EPSS
Percentile
99.4%
Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, which allows a remote attacker to execute arbitrary code in the context of the user. This CVE ID is different from CVE-2018-0834, CVE-2018-0835, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.8.0 | |
| microsoft.chakracore.vc140 | le | 1.8.0 |
Related
osv
osv
ChakraCore RCE Vulnerability
2022-05-13 01:18:32
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
ChakraCore RCE Vulnerability
2022-05-13 01:18:34
prion
prion
Memory corruption
2018-02-15 02:29:00
Memory corruption
2018-02-15 02:29:00
Memory corruption
2018-02-15 02:29:00
cvelist
cvelist
nvd
nvd
cve
cve
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
ChakraCore RCE Vulnerability
2022-05-13 01:18:32
veracode
veracode
Remote Code Execution (RCE)
2018-12-04 12:50:07
Remote Code Execution (RCE)
2018-12-04 13:11:42
Remote Code Execution (RCE)
2018-12-04 12:59:47
kaspersky
kaspersky
KLA11199 Multiple vulnerabilities in Microsoft Browsers
2018-02-13 00:00:00
KLA11200 Multiple vulnerabilties in Microsoft Products (ESU)
2018-02-13 00:00:00
nessus
nessus
Security Updates for Internet Explorer (February 2018)
2018-02-13 00:00:00
KB4074596: Windows 10 February 2018 Security Update (Meltdown)(Spectre)
2018-02-13 00:00:00
openvas
openvas
Microsoft Windows Internet Explorer Multiple RCE Vulnerabilities (KB4074736)
2018-02-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4074592)
2018-02-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4074596)
2018-02-14 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: February 13, 2018
2018-02-13 08:00:00
February 13, 2018âKB4074596 (OS Build 10240.17770)
2018-02-13 08:00:00
February 13, 2018âKB4074592 (OS Build 15063.909)
2018-02-13 08:00:00
trendmicroblog
trendmicroblog
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-02-13 08:00:00
Scripting Engine Memory Corruption Vulnerability
2018-02-13 08:00:00
Scripting Engine Memory Corruption Vulnerability
2018-02-13 08:00:00
symantec
symantec
packetstorm
packetstorm
Microsoft Edge Chakra JIT Escape Analysis Bug
2018-02-15 00:00:00
Microsoft Edge Chakra JIT Array.prototype.reverse Array Type Confusion
2018-02-15 00:00:00
Microsoft Edge Chakra JIT NewScObjectNoCtor Array Type Confusion
2018-02-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0834)
2018-02-13 00:00:00
Microsoft Scripting Engine Memory Corruption (CVE-2018-0858)
2018-02-13 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0860)
2018-02-13 00:00:00
zdt
zdt
Microsoft Internet Explorer 11 - Js::RegexHelper::RegexReplace Use-After-Free Exploit
2018-02-20 00:00:00
Microsoft Edge Chakra JIT - Memory Corruption Exploit
2018-02-15 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - February 2018
2018-02-13 13:26:00
seebug
seebug
IE11: Use-after-free in Js::RegexHelper::RegexReplace(CVE-2018-0866)
2018-02-24 00:00:00
IE11: Use-after-free in String.lastIndexOf(CVE-2018-0866)
2018-02-24 00:00:00
ics
ics
PEPPERL+FUCHS VisuNet RM, VisuNet PC, and Box Thin Client
2018-07-17 12:00:00