Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chakracore vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-11797
ChakraCore allows an malicious user to execute arbitrary code in the context of the current user, due to how the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-11792...
Microsoft Chakracore
7.5
CVSSv3
CVE-2017-11801
ChakraCore allows an malicious user to execute arbitrary code in the context of the current user, due to how the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-11792...
Microsoft Chakracore
7.5
CVSSv3
CVE-2017-11916
ChakraCore allows an malicious user to execute arbitrary code in the context of the current user, due to how the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11886, CVE...
Microsoft Chakracore
9.8
CVSSv3
CVE-2017-11767
ChakraCore allows an malicious user to gain the same user rights as the current user, due to the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability".
Microsoft Chakracore -
7.5
CVSSv3
CVE-2018-0818
Microsoft ChakraCore allows an malicious user to bypass Control Flow Guard (CFG) in conjunction with another vulnerability to run arbitrary code on a target system, due to how the Chakra scripting engine handles accessing memory, aka "Scripting Engine Security Feature Bypass...
Microsoft Chakracore -
5.5
CVSSv3
CVE-2023-37139
ChakraCore branch master cbb9b exists to contain a stack overflow vulnerability via the function Js::ScopeSlots::IsDebuggerScopeSlotArray().
Microsoft Chakracore -
5.5
CVSSv3
CVE-2023-37140
ChakraCore branch master cbb9b exists to contain a segmentation violation via the function Js::DiagScopeVariablesWalker::GetChildrenCount().
Microsoft Chakracore -
5.5
CVSSv3
CVE-2023-37141
ChakraCore branch master cbb9b exists to contain a segmentation violation via the function Js::ProfilingHelpers::ProfiledNewScArray().
Microsoft Chakracore -
5.5
CVSSv3
CVE-2023-37143
ChakraCore branch master cbb9b exists to contain a segmentation violation via the function BackwardPass::IsEmptyLoopAfterMemOp().
Microsoft Chakracore -
5.5
CVSSv3
CVE-2023-37142
ChakraCore branch master cbb9b exists to contain a segmentation violation via the function Js::EntryPointInfo::HasInlinees().
Microsoft Chakracore -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987
buffer overflow
CVE-2024-28890
CVE-2024-27574
CVE-2024-27347
CVE-2024-31450
privilege
SSTI
CVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »