Vulnerabilities > CVE-2018-0818 - Unspecified vulnerability in Microsoft Chakracore
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE network
microsoft
Summary
Microsoft ChakraCore allows an attacker to bypass Control Flow Guard (CFG) in conjunction with another vulnerability to run arbitrary code on a target system, due to how the Chakra scripting engine handles accessing memory, aka "Scripting Engine Security Feature Bypass".
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |