Microsoft.ChakraCore is vulnerable to remote code execution. This is due to way the Chakra scripting engine handles objects in memory, would allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8583, CVE-2018-8618, CVE-2018-8624, CVE-2018-8629

CPENameOperatorVersion
microsoft.chakracorele1.11.3
microsoft.chakracore.vc140le1.11.3

CPE	Name	Operator	Version
	microsoft.chakracore	le	1.11.3
	microsoft.chakracore.vc140	le	1.11.3

References

github.com/Microsoft/ChakraCore/pull/5869

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8617

osv 5

veracode 4

cve 5

prion 5

cvelist 5

nvd 5

github 5

kaspersky 1

checkpoint_advisories 5

mscve 5

symantec 5

zdi 4

zdt 1

packetstorm 1

nessus 4

openvas 6

mskb 6

krebs 1

talosblog 1

osv

ChakraCore RCE Vulnerability

2022-05-13 01:21:02

ChakraCore RCE Vulnerability

2022-05-13 01:21:01

ChakraCore RCE Vulnerability

2022-05-13 01:21:03

veracode

Remote Code Execution (RCE)

2018-12-12 04:05:34

Remote Code Execution (RCE)

2018-12-12 03:43:47

Remote Code Execution (RCE)

2018-12-12 03:59:24

cve

CVE-2018-8618

2018-12-12 00:29:01

CVE-2018-8629

2018-12-12 00:29:01

CVE-2018-8624

2018-12-12 00:29:01

prion

Remote code execution

2018-12-12 00:29:00

Remote code execution

2018-12-12 00:29:00

Remote code execution

2018-12-12 00:29:00

cvelist

CVE-2018-8629

2018-12-12 00:00:00

CVE-2018-8583

2018-12-12 00:00:00

CVE-2018-8618

2018-12-12 00:00:00

nvd

CVE-2018-8618

2018-12-12 00:29:01

CVE-2018-8617

2018-12-12 00:29:01

CVE-2018-8629

2018-12-12 00:29:01

github

ChakraCore RCE Vulnerability

2022-05-13 01:21:01

ChakraCore Remote code execution Vulnerability

2022-05-13 01:21:03

ChakraCore RCE Vulnerability

2022-05-13 01:21:02

kaspersky

KLA11388 Multiple vulnerabilities in Microsoft Browsers

2018-12-11 00:00:00

checkpoint_advisories

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8629)

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8583)

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8618)

2018-12-11 00:00:00

mscve

Chakra Scripting Engine Memory Corruption Vulnerability

2018-12-11 08:00:00

Chakra Scripting Engine Memory Corruption Vulnerability

2018-12-11 08:00:00

Chakra Scripting Engine Memory Corruption Vulnerability

2018-12-11 08:00:00

symantec

Microsoft Edge Chakra Scripting Engine CVE-2018-8583 Remote Memory Corruption Vulnerability

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine CVE-2018-8629 Remote Memory Corruption Vulnerability

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine CVE-2018-8618 Remote Memory Corruption Vulnerability

2018-12-11 00:00:00

zdi

Microsoft Chakra JavaScript Array Type Confusion Remote Code Execution Vulnerability

2018-12-13 00:00:00

Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability

2018-12-19 00:00:00

Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability

2018-12-19 00:00:00

zdt

Microsoft Edge Chakra - InlineArrayPush Type Confusion Exploit

2019-01-20 00:00:00

packetstorm

Microsoft Edge Chakra InlineArrayPush Type Confusion

2019-01-17 00:00:00

nessus

KB4471327: Windows 10 Version 1703 December 2018 Security Update

2018-12-11 00:00:00

KB4471332: Windows 10 Version 1809 and Windows Server 2019 December 2018 Security Update

2018-12-11 00:00:00

KB4471321: Windows 10 Version 1607 and Windows Server 2016 December 2018 Security Update

2018-12-11 00:00:00

openvas

Microsoft Windows Multiple Vulnerabilities (KB4471327)

2018-12-12 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4471329)

2018-12-12 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4471332)

2018-12-12 00:00:00

mskb

December 11, 2018—KB4471327 (OS Build 15063.1506)

2018-12-11 08:00:00

December 11, 2018—KB4471329 (OS Build 16299.846)

2018-12-11 08:00:00

December 11, 2018—KB4471324 (OS Build 17134.471)

2018-12-11 08:00:00

krebs

Patch Tuesday, December 2018 Edition

2018-12-11 21:05:41

talosblog

Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort coverage

2018-12-11 10:35:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.968 High

EPSS

Percentile

99.7%

JSON

Related for VERACODE:8019