CyberSec.Space Logo
Back to CVE Browser

CVE-2018-8500

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1250%
EPSS Percentile26.23th
PublishedOct 10, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Chakracore

All versions

References & Advisories

πŸ”— http://www.securityfocus.com/bid/105463
πŸ”— https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8500
πŸ”— http://www.securityfocus.com/bid/105463
πŸ”— https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8500

Related Vulnerabilities

CVE-2017-117679.8

ChakraCore allows an attacker to gain the same user rights as the current user, due to the way that the ChakraCore scripting engin...

CVE-2020-10738.1

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scrip...

CVE-2019-05687.5

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Ed...

CVE-2019-06397.5

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scrip...