Home

CVE-2018-8500

Description

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka Scripting Engine Memory Corruption Vulnerability. This affects ChakraCore.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
23.415

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are fixed in Nuget - Microsoft.ChakraCore 1.11.2Windows
Multiple vulnerabilities are fixed in Nuget - Microsoft.ChakraCore for Linux 1.11.2Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234