Vulnerabilities > Microsoft > Chakracore > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-18 | CVE-2023-37139 | Out-of-bounds Write vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a stack overflow vulnerability via the function Js::ScopeSlots::IsDebuggerScopeSlotArray(). | 5.5 |
| 2023-07-18 | CVE-2023-37140 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function Js::DiagScopeVariablesWalker::GetChildrenCount(). | 5.5 |
| 2023-07-18 | CVE-2023-37141 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function Js::ProfilingHelpers::ProfiledNewScArray(). | 5.5 |
| 2023-07-18 | CVE-2023-37142 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function Js::EntryPointInfo::HasInlinees(). | 5.5 |
| 2023-07-18 | CVE-2023-37143 | Resource Exhaustion vulnerability in Microsoft Chakracore ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the function BackwardPass::IsEmptyLoopAfterMemOp(). | 5.5 |
| 2019-06-12 | CVE-2019-1023 | Information Exposure vulnerability in Microsoft Chakracore and Edge An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. | 6.5 |
| 2019-06-12 | CVE-2019-0990 | Information Exposure vulnerability in Microsoft Chakracore and Edge An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. | 6.5 |
| 2019-04-09 | CVE-2019-0746 | Unspecified vulnerability in Microsoft Chakracore, Edge and Internet Explorer An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. | 6.5 |
| 2019-03-05 | CVE-2019-0658 | Unspecified vulnerability in Microsoft Chakracore and Edge An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. | 6.5 |
| 2018-09-13 | CVE-2018-8452 | Information Exposure vulnerability in Microsoft Chakracore, Edge and Internet Explorer An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft browsers, aka "Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. | 4.3 |