Microsoft ChakraCore is vulnerable to remote code execution. This is due to an expanding rest arguments during inlining, which would allow a remote attacker to execute arbitrary code in the context of the authenticated user.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.chakracore | le | 1.5.1 | |
microsoft.chakracore.vc140 | le | 1.5.1 |