A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-8287, CVE-2018-8288, CVE-2018-8291, CVE-2018-8296.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/104639 | VDB Entry Third Party Advisory |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8298 | Patch Vendor Advisory |
https://www.exploit-db.com/exploits/45217/ | Exploit Third Party Advisory VDB Entry |
Configurations
History
No history.
Information
Published : 2018-07-11 00:29
Updated : 2024-02-28 16:25
NVD link : CVE-2018-8298
Mitre link : CVE-2018-8298
CVE.ORG link : CVE-2018-8298
JSON object : View
Products Affected
microsoft
- chakracore
CWE
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')