Microsoft.ChakraCore is vulnerable to remote code execution. This is due to an out-of-bounds in Edge WIP which would allow an attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2018-8583, CVE-2018-8617, CVE-2018-8618, CVE-2018-8624

CPENameOperatorVersion
microsoft.chakracorele1.11.3
microsoft.chakracore.vc140le1.11.3

CPE	Name	Operator	Version
	microsoft.chakracore	le	1.11.3
	microsoft.chakracore.vc140	le	1.11.3

References

github.com/Microsoft/ChakraCore/pull/5869

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8629

osv 5

veracode 4

cve 5

prion 5

cvelist 5

nvd 5

github 5

kaspersky 1

checkpoint_advisories 5

mscve 5

symantec 5

zdi 4

zdt 1

packetstorm 1

nessus 4

openvas 6

mskb 6

krebs 1

talosblog 1

osv

ChakraCore RCE Vulnerability

2022-05-13 01:21:02

ChakraCore RCE Vulnerability

2022-05-13 01:21:01

ChakraCore RCE Vulnerability

2022-05-13 01:21:02

veracode

Remote Code Execution (RCE)

2018-12-12 03:51:03

Remote Code Execution (RCE)

2018-12-12 03:43:47

Remote Code Execution (RCE)

2018-12-12 03:59:24

cve

CVE-2018-8618

2018-12-12 00:29:01

CVE-2018-8629

2018-12-12 00:29:01

CVE-2018-8583

2018-12-12 00:29:00

prion

Remote code execution

2018-12-12 00:29:00

Remote code execution

2018-12-12 00:29:00

Remote code execution

2018-12-12 00:29:00

cvelist

CVE-2018-8629

2018-12-12 00:00:00

CVE-2018-8618

2018-12-12 00:00:00

CVE-2018-8617

2018-12-12 00:00:00

nvd

CVE-2018-8617

2018-12-12 00:29:01

CVE-2018-8629

2018-12-12 00:29:01

CVE-2018-8624

2018-12-12 00:29:01

github

ChakraCore RCE Vulnerability

2022-05-13 01:21:02

ChakraCore RCE Vulnerability

2022-05-13 01:21:03

ChakraCore RCE Vulnerability

2022-05-13 01:21:02

kaspersky

KLA11388 Multiple vulnerabilities in Microsoft Browsers

2018-12-11 00:00:00

checkpoint_advisories

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8629)

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8583)

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8618)

2018-12-11 00:00:00

mscve

Chakra Scripting Engine Memory Corruption Vulnerability

2018-12-11 08:00:00

Chakra Scripting Engine Memory Corruption Vulnerability

2018-12-11 08:00:00

Chakra Scripting Engine Memory Corruption Vulnerability

2018-12-11 08:00:00

symantec

Microsoft Edge Chakra Scripting Engine CVE-2018-8583 Remote Memory Corruption Vulnerability

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine CVE-2018-8629 Remote Memory Corruption Vulnerability

2018-12-11 00:00:00

Microsoft Edge Chakra Scripting Engine CVE-2018-8618 Remote Memory Corruption Vulnerability

2018-12-11 00:00:00

zdi

Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability

2018-12-19 00:00:00

Microsoft Chakra JavaScript Array Type Confusion Remote Code Execution Vulnerability

2018-12-13 00:00:00

Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability

2018-12-19 00:00:00

zdt

Microsoft Edge Chakra - InlineArrayPush Type Confusion Exploit

2019-01-20 00:00:00

packetstorm

Microsoft Edge Chakra InlineArrayPush Type Confusion

2019-01-17 00:00:00

nessus

KB4471327: Windows 10 Version 1703 December 2018 Security Update

2018-12-11 00:00:00

KB4471332: Windows 10 Version 1809 and Windows Server 2019 December 2018 Security Update

2018-12-11 00:00:00

KB4471321: Windows 10 Version 1607 and Windows Server 2016 December 2018 Security Update

2018-12-11 00:00:00

openvas

Microsoft Windows Multiple Vulnerabilities (KB4471329)

2018-12-12 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4471327)

2018-12-12 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4471332)

2018-12-12 00:00:00

mskb

December 11, 2018—KB4471329 (OS Build 16299.846)

2018-12-11 08:00:00

December 11, 2018—KB4471327 (OS Build 15063.1506)

2018-12-11 08:00:00

December 11, 2018—KB4471324 (OS Build 17134.471)

2018-12-11 08:00:00

krebs

Patch Tuesday, December 2018 Edition

2018-12-11 21:05:41

talosblog

Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort coverage

2018-12-11 10:35:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.968 High

EPSS

Percentile

99.7%

JSON

Related for VERACODE:8022