Vulnerabilities > CVE-2018-8283 - Out-of-bounds Write vulnerability in Microsoft Chakracore

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
high complexity
microsoft
CWE-787
NVD
Published: 2018-07-11
Updated: 2020-08-24

Summary

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8242, CVE-2018-8287, CVE-2018-8288, CVE-2018-8291, CVE-2018-8296, CVE-2018-8298.

Vulnerable Configurations

Part Description Count
Application
Microsoft
36

Common Weakness Enumeration (CWE)

The Hacker News

idTHN:482268607F3476C1920BBF880270C854
last seen2018-07-10
modified2018-07-10
published2018-07-10
reporterThe Hacker News
sourcehttps://thehackernews.com/2018/07/microsoft-security-patch-update.html
titleMicrosoft Releases Patch Updates for 53 Vulnerabilities In Its Software

References