Vulnerabilities > Microsoft > Chakracore
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-18 | CVE-2023-37139 | Out-of-bounds Write vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a stack overflow vulnerability via the function Js::ScopeSlots::IsDebuggerScopeSlotArray(). | 5.5 |
| 2023-07-18 | CVE-2023-37140 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function Js::DiagScopeVariablesWalker::GetChildrenCount(). | 5.5 |
| 2023-07-18 | CVE-2023-37141 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function Js::ProfilingHelpers::ProfiledNewScArray(). | 5.5 |
| 2023-07-18 | CVE-2023-37142 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function Js::EntryPointInfo::HasInlinees(). | 5.5 |
| 2023-07-18 | CVE-2023-37143 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function BackwardPass::IsEmptyLoopAfterMemOp(). | 5.5 |
| 2022-01-20 | CVE-2020-23315 | Unspecified vulnerability in Microsoft Chakracore 1.12.0.0 There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 1.12.0.0-beta. | 7.5 |
| 2020-08-17 | CVE-2020-1555 | Out-of-bounds Write vulnerability in Microsoft Chakracore and Edge A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). | 8.8 |
| 2020-06-09 | CVE-2020-1219 | Type Confusion vulnerability in Microsoft Chakracore, Edge and Internet Explorer A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'. | 7.5 |
| 2020-06-09 | CVE-2020-1073 | Out-of-bounds Write vulnerability in Microsoft Chakracore and Edge A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. | 8.1 |
| 2020-05-21 | CVE-2020-1065 | Out-of-bounds Write vulnerability in Microsoft Chakracore A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. | 7.5 |