CVE-2017-8658
Description
A remote code execution vulnerability exists in the way that the Chakra JavaScript engine renders when handling objects in memory, aka Scripting Engine Memory Corruption Vulnerability.
Risk Information
Base Score
4.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
36.011
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-8659,CVE-2017-8658 are fixed in Nuget - Microsoft.ChakraCore 1.6.1 | Windows |
| Vulnerabilities CVE-2017-8659,CVE-2017-8658 are fixed in Nuget - Microsoft.ChakraCore for Linux 1.6.1 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234