HIGH 7.5 NuGet
ChakraCore RCE Vulnerability
GHSA-63fw-7jgf-5hwv · CVE-2020-0711
Published · Modified
Description
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0674, CVE-2020-0710, CVE-2020-0712, CVE-2020-0713, CVE-2020-0767.
References
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-0711
- WEB https://github.com/chakra-core/ChakraCore/pull/6375
- WEB https://github.com/chakra-core/ChakraCore/pull/6375/commits/a9aee51164faa28ca8617746d1d99ea3f1e75e65
- WEB https://github.com/chakra-core/ChakraCore
- WEB https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0711
Ready to move
Start Securing
Free, no credit card | First findings in minutes