Microsoft.ChakraCore is vulnerable to remote code execution. This is due to a buffer overflow in the JIT scripting engine which would allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8583, CVE-2018-8617, CVE-2018-8618, CVE-2018-8629
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.chakracore | le | 1.11.3 | |
microsoft.chakracore.vc140 | le | 1.11.3 |