ChakraCore RCE Vulnerability

GHSA-w4qx-vw2w-q566 · CVE-2018-8243

Published May 13, 2022 · Modified Feb 16, 2024

Description

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8267.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-8243
WEB https://github.com/chakra-core/ChakraCore/wiki/Roadmap#v185
WEB https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8243
WEB https://web.archive.org/web/20210124175604/http://www.securityfocus.com/bid/104403

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes