Microsoft.ChakraCore is vulnerable to remote code execution. This is due to an out-of-bounds in the ChakraCore JIT which would allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8617, CVE-2018-8618, CVE-2018-8624, CVE-2018-8629.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.chakracore | le | 1.11.3 | |
microsoft.chakracore.vc140 | le | 1.11.3 |