Lucene search
Veracode Vulnerability DatabaseVERACODE:7934HistoryDec 04, 2018 - 12:50 p.m.
Remote Code Execution (RCE)
2018-12-0412:50:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.953 High
EPSS
Percentile
99.4%
Microsoft ChakraCore is vulnerable to remote code execution. This is due to how the scripting engine handles objects in memory, which allows a remote attacker to execute arbitrary code in the context of the user. This CVE ID is different from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft.chakracore | le | 1.8.0 | |
| microsoft.chakracore.vc140 | le | 1.8.0 |
Related
osv
osv
ChakraCore RCE Vulnerability
2022-05-13 01:18:32
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
prion
prion
Memory corruption
2018-02-15 02:29:00
Memory corruption
2018-02-15 02:29:00
Memory corruption
2018-02-15 02:29:00
cvelist
cvelist
nvd
nvd
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
ChakraCore RCE Vulnerability
2022-05-13 01:18:32
ChakraCore RCE Vulnerability
2022-05-13 01:18:33
cve
cve
veracode
veracode
Remote Code Execution (RCE)
2018-12-04 12:22:37
Remote Code Execution (RCE)
2018-12-04 13:43:20
Remote Code Execution (RCE)
2018-12-04 13:49:31
kaspersky
kaspersky
KLA11199 Multiple vulnerabilities in Microsoft Browsers
2018-02-13 00:00:00
KLA11200 Multiple vulnerabilties in Microsoft Products (ESU)
2018-02-13 00:00:00
openvas
openvas
Microsoft Windows Internet Explorer Multiple RCE Vulnerabilities (KB4074736)
2018-02-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4074592)
2018-02-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4074596)
2018-02-14 00:00:00
nessus
nessus
Security Updates for Internet Explorer (February 2018)
2018-02-13 00:00:00
KB4074596: Windows 10 February 2018 Security Update (Meltdown)(Spectre)
2018-02-13 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: February 13, 2018
2018-02-13 08:00:00
February 13, 2018âKB4074596 (OS Build 10240.17770)
2018-02-13 08:00:00
February 13, 2018âKB4074592 (OS Build 15063.909)
2018-02-13 08:00:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-02-13 08:00:00
Scripting Engine Memory Corruption Vulnerability
2018-02-13 08:00:00
Scripting Engine Memory Corruption Vulnerability
2018-02-13 08:00:00
symantec
symantec
checkpoint_advisories
checkpoint_advisories
Microsoft Scripting Engine Memory Corruption (CVE-2018-0858)
2018-02-13 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0834)
2018-02-13 00:00:00
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0860)
2018-02-13 00:00:00
packetstorm
packetstorm
Microsoft Edge Chakra JIT Escape Analysis Bug
2018-02-15 00:00:00
Microsoft Edge Chakra JIT LdThis Type Confusion
2018-02-15 00:00:00
Microsoft Edge Chakra JIT Array.prototype.reverse Array Type Confusion
2018-02-15 00:00:00
zdt
zdt
Microsoft Edge Chakra JIT - Memory Corruption Exploit
2018-02-15 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - February 2018
2018-02-13 13:26:00
seebug
seebug
IE11: Use-after-free in Js::RegexHelper::RegexReplace(CVE-2018-0866)
2018-02-24 00:00:00
IE11: Use-after-free in String.lastIndexOf(CVE-2018-0866)
2018-02-24 00:00:00
trendmicroblog
trendmicroblog
ics
ics
PEPPERL+FUCHS VisuNet RM, VisuNet PC, and Box Thin Client
2018-07-17 12:00:00