Search for packages
| purl | pkg:nuget/Microsoft.ChakraCore@1.2.0 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1dwn-ny85-c3d1
Aliases: CVE-2018-0990 GHSA-vh9x-fprq-2hhj |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-1edg-5vpf-ebct
Aliases: CVE-2018-0872 GHSA-h9h7-4jfm-3fxr |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-1h33-wb9x-xudu
Aliases: CVE-2018-0933 GHSA-3j65-2jcq-w9fr |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-1m7h-vd37-tucs
Aliases: CVE-2019-0609 GHSA-pjpj-f6r8-56rm |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-1vtq-7gzj-zuav
Aliases: CVE-2020-0829 GHSA-jv2c-mhcq-6wp4 |
Affected by 13 other vulnerabilities. |
|
|
VCID-1whc-yyxw-a7db
Aliases: CVE-2019-0652 |
Affected by 95 other vulnerabilities. |
|
|
VCID-23pe-kmtu-due1
Aliases: CVE-2019-1023 |
Affected by 56 other vulnerabilities. |
|
|
VCID-28ae-cy8x-bkb4
Aliases: CVE-2019-0914 GHSA-h6wf-hvwc-fm77 |
Affected by 67 other vulnerabilities. |
|
|
VCID-2bfb-bjme-3uax
Aliases: CVE-2019-0860 GHSA-fv87-p7qr-xh5x |
ChakraCore Memory Corruption Vulnerability |
Affected by 81 other vulnerabilities. |
|
VCID-2dgh-nz27-hqgm
Aliases: CVE-2018-8291 GHSA-j67m-wpv6-pv44 |
ChakraCore RCE Vulnerability |
Affected by 109 other vulnerabilities. |
|
VCID-2w7t-cpja-rfc2
Aliases: CVE-2019-1052 GHSA-v8jw-x9wq-hw4v |
Chakra Scripting Engine RCE via Out-of-bounds write |
Affected by 56 other vulnerabilities. |
|
VCID-33mh-f4ba-rkec
Aliases: CVE-2017-11918 |
Affected by 172 other vulnerabilities. |
|
|
VCID-34tc-u8ag-1bdu
Aliases: CVE-2018-8287 GHSA-p97q-j98q-f98w |
ChakraCore RCE Vulnerability |
Affected by 109 other vulnerabilities. |
|
VCID-396f-qv1y-zycp
Aliases: CVE-2020-0713 GHSA-g6mc-8679-ghx9 |
Affected by 28 other vulnerabilities. |
|
|
VCID-3a12-4ae6-8kga
Aliases: CVE-2019-1139 GHSA-9qw8-ccq9-ffj9 |
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability. The security update addresses the vulnerability by modifying how the Chakra scripting engine handles objects in memory. |
Affected by 43 other vulnerabilities. |
|
VCID-3rx7-wt7s-wubc
Aliases: CVE-2019-0912 GHSA-w89r-qch4-8jv5 |
Affected by 67 other vulnerabilities. |
|
|
VCID-3vrt-suhz-17gk
Aliases: CVE-2019-1426 |
Affected by 33 other vulnerabilities. |
|
|
VCID-3xmt-pq5e-xqh4
Aliases: CVE-2020-0969 GHSA-jr84-p554-62pm |
Affected by 10 other vulnerabilities. |
|
|
VCID-49nk-45ed-cyau
Aliases: CVE-2019-0911 GHSA-9735-p6r2-2hgh |
Affected by 67 other vulnerabilities. |
|
|
VCID-49ss-7pbr-2uaw
Aliases: CVE-2017-11912 |
Affected by 172 other vulnerabilities. |
|
|
VCID-4er8-d3te-7ycr
Aliases: CVE-2018-0980 GHSA-xmvg-c4x3-9qwp |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-4n25-ay5c-y3e6
Aliases: CVE-2016-7190 GHSA-w4mj-xwvw-382f |
Affected by 202 other vulnerabilities. |
|
|
VCID-4q2x-17yh-x3a3
Aliases: CVE-2018-0937 GHSA-6c2v-xc8f-fvf7 |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-4rze-jrnp-6bh8
Aliases: CVE-2019-1001 |
Affected by 50 other vulnerabilities. |
|
|
VCID-52z5-hhmf-x7hw
Aliases: CVE-2017-11805 GHSA-px6p-jxwr-27mc |
Affected by 188 other vulnerabilities. Affected by 185 other vulnerabilities. |
|
|
VCID-5613-bjzy-a3h6
Aliases: CVE-2019-1002 GHSA-4v6q-gjm6-6vv4 |
ChakraCore RCE via Out-of-bounds write |
Affected by 56 other vulnerabilities. |
|
VCID-5m5f-ehkz-kfd7
Aliases: CVE-2017-11910 GHSA-735f-mx7h-46w8 |
Affected by 172 other vulnerabilities. |
|
|
VCID-5ruf-nkcs-t7fy
Aliases: CVE-2019-0861 GHSA-qxmj-3c5h-546c |
ChakraCore Memory Corruption Vulnerability |
Affected by 81 other vulnerabilities. |
|
VCID-5zrv-qjqa-dyc8
Aliases: CVE-2019-1051 GHSA-fxrx-5j36-pwg5 |
Chakra Scripting Engine RCE via Out-of-bounds write |
Affected by 56 other vulnerabilities. |
|
VCID-64c5-khv3-fuhq
Aliases: CVE-2018-8371 GHSA-85j8-g29g-m326 |
ChakraCore RCE Vulnerability |
Affected by 109 other vulnerabilities. |
|
VCID-66xa-mpc1-jubq
Aliases: CVE-2019-1195 GHSA-ppxc-pmx9-qjv9 |
Affected by 43 other vulnerabilities. |
|
|
VCID-675e-ugrx-rqc1
Aliases: CVE-2019-1427 |
Affected by 33 other vulnerabilities. |
|
|
VCID-6bkh-f57j-fuca
Aliases: CVE-2020-0811 GHSA-pg99-mp4c-75g6 |
Affected by 13 other vulnerabilities. |
|
|
VCID-6c4a-612x-zucf
Aliases: CVE-2016-7243 GHSA-77qc-gp37-hr26 |
Affected by 202 other vulnerabilities. |
|
|
VCID-6erb-zja6-u7cz
Aliases: CVE-2020-0813 GHSA-vvvh-5xrm-pxff |
ChakraCore information disclosure vulnerability |
Affected by 13 other vulnerabilities. |
|
VCID-6ve5-7zxm-kkes
Aliases: CVE-2019-0992 GHSA-53r4-h27g-rg3x |
Affected by 56 other vulnerabilities. |
|
|
VCID-78aw-sbqe-tkgg
Aliases: CVE-2018-0946 GHSA-wc67-4cg3-35wf |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-78gc-97zd-bqeu
Aliases: CVE-2019-0924 GHSA-prxj-c66c-4gcf |
Affected by 67 other vulnerabilities. |
|
|
VCID-7g1n-uy13-7bfv
Aliases: CVE-2017-11799 |
Affected by 188 other vulnerabilities. |
|
|
VCID-7mk6-x478-gue4
Aliases: CVE-2019-0655 |
Affected by 95 other vulnerabilities. |
|
|
VCID-7sde-cxkc-3bcx
Aliases: CVE-2017-11889 GHSA-xw5f-g937-wgm2 |
Affected by 172 other vulnerabilities. |
|
|
VCID-7x16-7jgq-zyaa
Aliases: CVE-2018-8459 GHSA-pcgp-vfgq-mf5j |
ChakraCore RCE Vulnerability |
Affected by 109 other vulnerabilities. Affected by 110 other vulnerabilities. |
|
VCID-7xhp-xrvg-83g6
Aliases: CVE-2016-7194 GHSA-36c3-jcm2-rm3j |
Affected by 202 other vulnerabilities. |
|
|
VCID-7xj1-972d-cqeb
Aliases: CVE-2017-8658 GHSA-8v2h-4jpm-3wfm |
Affected by 0 other vulnerabilities. Affected by 192 other vulnerabilities. |
|
|
VCID-812b-1ekf-eyc2
Aliases: CVE-2017-0224 GHSA-68cp-h96v-gg3x |
Affected by 194 other vulnerabilities. |
|
|
VCID-85es-d2td-muds
Aliases: CVE-2020-0823 GHSA-wvhv-rr3v-vhpj |
Affected by 13 other vulnerabilities. |
|
|
VCID-85uk-vssc-jbha
Aliases: CVE-2019-0651 |
Affected by 95 other vulnerabilities. |
|
|
VCID-8966-cwfh-bbag
Aliases: CVE-2019-1217 GHSA-pcgf-qjx2-qv4q |
Affected by 38 other vulnerabilities. |
|
|
VCID-8ceu-3cqk-8fhb
Aliases: CVE-2020-0710 GHSA-67xp-4726-4978 |
Affected by 28 other vulnerabilities. |
|
|
VCID-8d7u-feaf-dyf2
Aliases: CVE-2017-0235 GHSA-rm8g-7g54-w6fh |
Affected by 194 other vulnerabilities. |
|
|
VCID-8fgg-vkqg-dyc8
Aliases: CVE-2019-0605 |
Affected by 95 other vulnerabilities. |
|
|
VCID-8hhb-at1w-p3bb
Aliases: CVE-2019-1308 GHSA-vw2g-5827-m9fp |
Affected by 36 other vulnerabilities. |
|
|
VCID-8mcg-2ms6-mbcd
Aliases: CVE-2017-0234 GHSA-6p7q-85qq-7c43 |
Affected by 194 other vulnerabilities. |
|
|
VCID-8mue-178g-3kd8
Aliases: CVE-2020-0848 GHSA-5p67-cp9c-hqw4 |
Affected by 13 other vulnerabilities. |
|
|
VCID-8nyw-f1n2-yqfn
Aliases: CVE-2018-8286 GHSA-vwqh-cmvp-6694 |
ChakraCore RCE Vulnerability |
Affected by 117 other vulnerabilities. Affected by 109 other vulnerabilities. |
|
VCID-8pqh-96h7-qkcf
Aliases: CVE-2016-3382 GHSA-92j2-gg59-4572 |
Affected by 212 other vulnerabilities. |
|
|
VCID-8pzh-3r2a-j3dv
Aliases: CVE-2019-0658 |
Affected by 95 other vulnerabilities. |
|
|
VCID-8z47-uwb9-hbcm
Aliases: CVE-2018-0773 |
Affected by 156 other vulnerabilities. |
|
|
VCID-97a1-bab4-37at
Aliases: CVE-2020-1219 |
Affected by 7 other vulnerabilities. |
|
|
VCID-9qja-w1jy-83du
Aliases: CVE-2018-0995 GHSA-c6mx-gwgr-mfm2 |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-9r6w-gfh2-3fd4
Aliases: CVE-2018-0780 |
Affected by 156 other vulnerabilities. |
|
|
VCID-9w35-weed-ybbt
Aliases: CVE-2019-0812 GHSA-rpfg-xf88-cq5r |
ChakraCore RCE Vulnerability |
Affected by 81 other vulnerabilities. |
|
VCID-9yb4-wk5w-r3c1
Aliases: CVE-2019-0990 |
Affected by 56 other vulnerabilities. |
|
|
VCID-a735-6naa-nuf1
Aliases: CVE-2016-7189 GHSA-vr4j-gj8q-m89v |
Affected by 212 other vulnerabilities. |
|
|
VCID-abbc-avwf-1fe7
Aliases: CVE-2018-0979 GHSA-25vh-gq6v-hrx5 |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-amgv-3kzw-yydz
Aliases: CVE-2018-8283 GHSA-ch84-pxpj-7hhm |
ChakraCore RCE Vulnerability |
Affected by 109 other vulnerabilities. |
|
VCID-b2wy-kzc4-aqby
Aliases: CVE-2020-0826 GHSA-6cc6-66f5-mxjj |
Affected by 13 other vulnerabilities. |
|
|
VCID-b39n-tkwg-h3ft
Aliases: CVE-2016-7242 GHSA-p6f4-h6w5-9jmc |
Affected by 202 other vulnerabilities. |
|
|
VCID-b478-qap5-nbgb
Aliases: CVE-2018-0772 |
Affected by 156 other vulnerabilities. |
|
|
VCID-b518-a61h-vqdv
Aliases: CVE-2019-0649 GHSA-6c6r-39cv-x5fq |
Chakra JIT server Privilege Escalation |
Affected by 95 other vulnerabilities. |
|
VCID-bqz9-e35s-qubp
Aliases: CVE-2019-0769 GHSA-8qh8-cv77-h83g |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-bvmf-cm4v-pue2
Aliases: CVE-2016-3214 GHSA-538h-6rv2-wmj3 |
Affected by 201 other vulnerabilities. |
|
|
VCID-bx8x-3h3f-gkc2
Aliases: CVE-2019-1106 GHSA-mg98-x2cm-4cpf |
Affected by 50 other vulnerabilities. |
|
|
VCID-c245-vxmf-dfbp
Aliases: CVE-2020-0970 GHSA-233h-59m2-qqf2 |
Affected by 10 other vulnerabilities. |
|
|
VCID-cbvc-5zpw-b7eh
Aliases: CVE-2019-1237 GHSA-q99r-j969-6jwr |
Affected by 38 other vulnerabilities. |
|
|
VCID-cnfk-y49a-1yem
Aliases: CVE-2018-0939 GHSA-xgcc-r2f3-rq6p |
ChakraCore information disclosure vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-cqu4-1s3z-8uhe
Aliases: CVE-2020-0767 GHSA-fhc8-h6hr-h9mq |
Affected by 28 other vulnerabilities. |
|
|
VCID-cwa1-ac4c-63da
Aliases: CVE-2016-3390 GHSA-f7p4-fmmh-4p8x |
Affected by 212 other vulnerabilities. |
|
|
VCID-cwm3-3zdj-7qdz
Aliases: CVE-2018-0943 GHSA-7724-427r-8rvm |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-d6xc-7t72-xuew
Aliases: CVE-2019-1131 GHSA-mw7r-3g6w-85qg |
Affected by 43 other vulnerabilities. |
|
|
VCID-d88b-ewfq-bfam
Aliases: CVE-2019-0922 GHSA-hrmm-f4j8-8vxc |
Affected by 67 other vulnerabilities. |
|
|
VCID-dnve-wtfr-ffbj
Aliases: CVE-2016-7200 GHSA-5whg-j5fv-xcm2 |
The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7201, CVE-2016-7202, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243. |
Affected by 202 other vulnerabilities. |
|
VCID-e4dt-7r4b-a7be
Aliases: CVE-2018-0934 GHSA-phcc-frh9-q545 |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-e6h3-a6c2-6ydr
Aliases: CVE-2018-0781 |
Affected by 156 other vulnerabilities. |
|
|
VCID-eawb-yj6m-qyhy
Aliases: CVE-2018-8275 |
Affected by 117 other vulnerabilities. |
|
|
VCID-ephm-kzfv-hkb4
Aliases: CVE-2019-1300 GHSA-grvw-q343-58wh |
Affected by 38 other vulnerabilities. |
|
|
VCID-eqhg-w3fe-xfer
Aliases: CVE-2017-11893 GHSA-c6r3-ghjw-hgrj |
Affected by 172 other vulnerabilities. |
|
|
VCID-ered-mcg4-zqd4
Aliases: CVE-2019-1138 GHSA-pwpr-vp2v-99xw |
Affected by 38 other vulnerabilities. |
|
|
VCID-f67n-y9ke-5fe3
Aliases: CVE-2020-0833 GHSA-86gw-g9jv-8vfg |
Affected by 13 other vulnerabilities. |
|
|
VCID-f7wn-4kgg-7qea
Aliases: CVE-2019-0916 GHSA-7423-5qfm-g648 |
Affected by 67 other vulnerabilities. |
|
|
VCID-f9t8-pu24-1ybr
Aliases: CVE-2018-0860 GHSA-v3xp-3wpq-rvhp |
ChakraCore RCE Vulnerability |
Affected by 155 other vulnerabilities. |
|
VCID-fbda-6kry-mkgs
Aliases: CVE-2019-0991 GHSA-6973-94v8-5mgw |
Affected by 56 other vulnerabilities. |
|
|
VCID-ffdd-j9gv-sqb4
Aliases: CVE-2019-1062 GHSA-rh4p-g7x6-8pqg |
Affected by 50 other vulnerabilities. |
|
|
VCID-fwp8-vbs5-9bdd
Aliases: CVE-2017-11808 |
Affected by 188 other vulnerabilities. |
|
|
VCID-fxpy-m56e-ckck
Aliases: CVE-2018-0954 GHSA-h5hw-qrrw-vfxg |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-fy8j-zy3q-e3cx
Aliases: CVE-2016-3296 GHSA-5ppx-g65v-4vfv |
Affected by 212 other vulnerabilities. |
|
|
VCID-fz3w-jakm-qkau
Aliases: CVE-2020-17131 GHSA-qwwg-gc55-qqrv |
Affected by 1 other vulnerability. |
|
|
VCID-g42e-65eu-wkbd
Aliases: CVE-2017-11930 |
Affected by 172 other vulnerabilities. |
|
|
VCID-g9av-a3vu-9kdj
Aliases: CVE-2020-0878 |
<p>A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, the attacker could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>An attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft browsers, and then convince a user to view the website. The attacker could also take advantage of compromised websites, or websites that accept or host user-provided content or advertisements, by adding specially crafted content that could exploit the vulnerability. In all cases, however, an attacker would have no way to force users to view the attacker-controlled content. Instead, an attacker would have to convince users to take action, typically via an enticement in email or instant message, or by getting them to open an email attachment.</p> <p>The security update addresses the vulnerability by modifying how Microsoft browsers handle objects in memory.</p> |
Affected by 3 other vulnerabilities. |
|
VCID-gb97-9uqg-hyaq
Aliases: CVE-2019-1107 GHSA-5rcr-q3rx-j7vr |
Affected by 50 other vulnerabilities. |
|
|
VCID-gdh1-kk9h-67bs
Aliases: CVE-2018-0931 GHSA-h575-j3ph-hjvc |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-gdha-b3yw-abdc
Aliases: CVE-2016-7202 GHSA-mmfq-r3rg-8r7w |
Affected by 202 other vulnerabilities. |
|
|
VCID-gehj-jsr3-r3hb
Aliases: CVE-2019-1024 GHSA-g8q3-rcf9-qx4q |
Chakra Scripting Engine RCE Vulnerability |
Affected by 56 other vulnerabilities. |
|
VCID-gm4r-466e-57g6
Aliases: CVE-2019-0640 |
Affected by 95 other vulnerabilities. |
|
|
VCID-gprm-fyb6-57f8
Aliases: CVE-2018-8229 GHSA-jv5x-p843-g4qr |
ChakraCore RCE Vulnerability |
Affected by 123 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-gprs-efc8-kuda
Aliases: CVE-2018-1019 GHSA-prhh-h793-h32r |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-gsq9-fdey-sbdp
Aliases: CVE-2018-0800 |
Affected by 156 other vulnerabilities. |
|
|
VCID-gvej-214x-8yep
Aliases: CVE-2018-8298 GHSA-wgw2-wwq8-c7wf |
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-8287, CVE-2018-8288, CVE-2018-8291, CVE-2018-8296. |
Affected by 109 other vulnerabilities. |
|
VCID-gwzm-bzmw-d7gj
Aliases: CVE-2019-0610 |
Affected by 95 other vulnerabilities. |
|
|
VCID-gzka-16re-4qck
Aliases: CVE-2018-8177 GHSA-7cc5-cqmx-9v7g |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-h3vw-3ycv-2qaz
Aliases: CVE-2020-1065 GHSA-9hjg-j983-mqcc |
Affected by 9 other vulnerabilities. |
|
|
VCID-h739-hs7z-dfdx
Aliases: CVE-2018-0945 GHSA-5439-x5v5-2vhj |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-hvt8-wewj-ekh2
Aliases: CVE-2019-0771 GHSA-fvpg-qx3g-7mp7 |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-hw4f-12zh-nffx
Aliases: CVE-2019-0989 GHSA-9824-rp6m-xx9w |
Affected by 56 other vulnerabilities. |
|
|
VCID-hwy3-667u-rbby
Aliases: CVE-2016-7203 GHSA-wcvc-rhfj-997g |
Affected by 202 other vulnerabilities. |
|
|
VCID-hz1w-merz-mkhe
Aliases: CVE-2018-8280 GHSA-wwm6-r38h-ppg7 |
ChakraCore RCE Vulnerability |
Affected by 117 other vulnerabilities. Affected by 109 other vulnerabilities. |
|
VCID-j4cs-7ats-8fey
Aliases: CVE-2020-0832 GHSA-2qgv-2cv4-g4cg |
Affected by 13 other vulnerabilities. |
|
|
VCID-j4wk-pp6g-h7e7
Aliases: CVE-2019-0592 GHSA-fv38-4c3m-25v8 |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-j534-h6st-y3g4
Aliases: CVE-2018-8294 GHSA-gxxx-j8m7-hh7m |
ChakraCore RCE Vulnerability |
Affected by 117 other vulnerabilities. Affected by 109 other vulnerabilities. |
|
VCID-j5t6-bt8j-8ub2
Aliases: CVE-2018-8139 GHSA-5hxp-3237-j2hp |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-j99y-837j-j3hd
Aliases: CVE-2018-0769 |
Affected by 156 other vulnerabilities. |
|
|
VCID-jaym-ynva-3ygm
Aliases: CVE-2018-0774 |
Affected by 156 other vulnerabilities. |
|
|
VCID-jgd7-45bs-cfb3
Aliases: CVE-2019-0639 GHSA-6jf5-rmhv-38cw |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-jgr2-fsyk-7qds
Aliases: CVE-2017-11916 GHSA-5f5r-65pm-r3wr |
Affected by 172 other vulnerabilities. |
|
|
VCID-jgsk-bh2r-pfdq
Aliases: CVE-2018-0777 |
Affected by 156 other vulnerabilities. |
|
|
VCID-jhrm-t2w3-rugu
Aliases: CVE-2019-1092 GHSA-2x75-mf24-588m |
Affected by 50 other vulnerabilities. |
|
|
VCID-ju8c-muc4-a7ha
Aliases: CVE-2019-0923 GHSA-h23m-w6x5-jwr4 |
Affected by 67 other vulnerabilities. |
|
|
VCID-juzb-qxyy-5uc8
Aliases: CVE-2019-0607 |
Affected by 95 other vulnerabilities. |
|
|
VCID-k4g3-4vp6-ubd3
Aliases: CVE-2020-0827 GHSA-7j34-xq9v-9mqg |
Affected by 13 other vulnerabilities. |
|
|
VCID-kdwv-gb6d-kudh
Aliases: CVE-2018-8227 GHSA-gqh4-4r89-pr95 |
ChakraCore RCE Vulnerability |
Affected by 123 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-kvtf-p5jd-k3dm
Aliases: CVE-2018-8178 |
Affected by 125 other vulnerabilities. |
|
|
VCID-kyqg-h33m-myak
Aliases: CVE-2017-0236 GHSA-p3rw-88pp-w4jh |
Affected by 194 other vulnerabilities. |
|
|
VCID-m3qe-dy7e-kbfn
Aliases: CVE-2017-11914 GHSA-8r5c-8v97-g7vh |
Affected by 172 other vulnerabilities. |
|
|
VCID-m7k9-ja8r-tyhq
Aliases: CVE-2020-1073 GHSA-g3m9-qrfj-xw4g |
Affected by 7 other vulnerabilities. |
|
|
VCID-m9nf-tmrb-gffx
Aliases: CVE-2018-1022 GHSA-wjmf-6x7g-xq67 |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-mpvg-9k3m-6ufw
Aliases: CVE-2017-0252 GHSA-ghwq-7v3r-5433 |
Affected by 194 other vulnerabilities. |
|
|
VCID-mqhh-z4kz-euez
Aliases: CVE-2019-0933 GHSA-5rq8-3wvf-wrfg |
Affected by 67 other vulnerabilities. |
|
|
VCID-myj5-rgm3-9qdm
Aliases: CVE-2019-0917 GHSA-rx34-jff5-ph35 |
Affected by 67 other vulnerabilities. |
|
|
VCID-mz6s-b79x-qfgz
Aliases: CVE-2018-8133 GHSA-8rqh-8726-83h7 |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-n8xe-rm2v-uqhm
Aliases: CVE-2019-0642 |
Affected by 95 other vulnerabilities. |
|
|
VCID-nb8e-erg7-mqbh
Aliases: CVE-2020-0768 GHSA-pfrg-w49c-8432 |
Affected by 13 other vulnerabilities. |
|
|
VCID-nbah-g2gn-gfhu
Aliases: CVE-2016-3386 GHSA-v9jg-m6g5-h3hh |
Affected by 212 other vulnerabilities. |
|
|
VCID-nnej-p5uj-yfek
Aliases: CVE-2016-7201 GHSA-4f5g-j7wg-7w8j |
The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7200, CVE-2016-7202, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243. |
Affected by 202 other vulnerabilities. |
|
VCID-nreh-haxk-g3bc
Aliases: CVE-2019-0913 GHSA-59cj-99cw-rq64 |
Affected by 67 other vulnerabilities. |
|
|
VCID-nrwz-87dy-17aw
Aliases: CVE-2017-0208 GHSA-pjpr-2qqp-gprf |
Affected by 200 other vulnerabilities. |
|
|
VCID-nym4-ygc8-tucr
Aliases: CVE-2018-0936 GHSA-6v8r-83v3-rmrf |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-p97q-g3bk-abey
Aliases: CVE-2020-1180 GHSA-wc43-7wj6-4ggr |
Affected by 3 other vulnerabilities. |
|
|
VCID-pbwx-y7mm-aybn
Aliases: CVE-2019-0590 |
Affected by 95 other vulnerabilities. |
|
|
VCID-pmpq-yar2-qyf4
Aliases: CVE-2018-0953 |
Affected by 125 other vulnerabilities. |
|
|
VCID-prxf-xpyj-7kaz
Aliases: CVE-2019-1298 GHSA-2452-3rwv-x89c |
Affected by 38 other vulnerabilities. |
|
|
VCID-pxrd-wjxx-bbcu
Aliases: CVE-2019-1196 GHSA-hfm2-fffh-v47v |
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability. The security update addresses the vulnerability by modifying how the Chakra scripting engine handles objects in memory. |
Affected by 43 other vulnerabilities. |
|
VCID-q3b4-bs45-kfc3
Aliases: CVE-2019-1140 GHSA-758c-g2ff-9444 |
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability. The security update addresses the vulnerability by modifying how the Chakra scripting engine handles objects in memory. |
Affected by 43 other vulnerabilities. |
|
VCID-q4mt-4ntw-9kdc
Aliases: CVE-2020-1057 GHSA-9f8c-f7h4-xghf |
Affected by 3 other vulnerabilities. |
|
|
VCID-q5f7-pkx9-bfbt
Aliases: CVE-2018-0767 |
Affected by 156 other vulnerabilities. |
|
|
VCID-qb7n-ynah-kugr
Aliases: CVE-2018-0776 |
Affected by 156 other vulnerabilities. |
|
|
VCID-qbh2-u79b-vba4
Aliases: CVE-2019-0739 |
Affected by 81 other vulnerabilities. |
|
|
VCID-qc19-2g99-wbgh
Aliases: CVE-2020-0825 GHSA-j89m-gcjf-6ghp |
Affected by 13 other vulnerabilities. |
|
|
VCID-qdjk-9btp-6ugd
Aliases: CVE-2018-0874 GHSA-67f9-qmg7-fmcq |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-qebv-2tap-vuc7
Aliases: CVE-2021-42279 GHSA-jgrp-6qqq-3284 |
Chakra Scripting Engine and ChakraCore Vulnerable to Memory Corruption | There are no reported fixed by versions. |
|
VCID-qunj-bcv2-e3b8
Aliases: CVE-2017-11811 |
Affected by 185 other vulnerabilities. |
|
|
VCID-quyp-13dd-y3ft
Aliases: CVE-2017-11905 GHSA-72gm-pp6q-gpx5 |
Affected by 172 other vulnerabilities. |
|
|
VCID-r4qm-jvf8-bbd2
Aliases: CVE-2017-11797 GHSA-hrf4-ww4w-6rv6 |
Affected by 185 other vulnerabilities. |
|
|
VCID-rccy-my4a-z7bq
Aliases: CVE-2019-0927 GHSA-37pf-w9ff-gqvm |
Affected by 67 other vulnerabilities. |
|
|
VCID-rdxa-njrb-nybs
Aliases: CVE-2018-0768 |
Affected by 156 other vulnerabilities. |
|
|
VCID-rek6-a2xy-mbcy
Aliases: CVE-2019-0773 GHSA-3w9q-c44j-37jj |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-rhby-ctww-nbgf
Aliases: CVE-2019-0644 |
Affected by 95 other vulnerabilities. |
|
|
VCID-rmpd-h54b-7bdk
Aliases: CVE-2018-0873 GHSA-wc52-2xwv-h7xr |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-rmqb-2st2-83hp
Aliases: CVE-2017-0223 GHSA-448h-7hmp-99fg |
Affected by 194 other vulnerabilities. |
|
|
VCID-rmwj-ddcn-kkd9
Aliases: CVE-2016-3377 GHSA-wv44-9w69-w43j |
Affected by 212 other vulnerabilities. |
|
|
VCID-rp6a-wbne-vkcn
Aliases: CVE-2016-3350 GHSA-p94c-r74j-43qg |
Affected by 212 other vulnerabilities. |
|
|
VCID-rrvj-bpcj-c3du
Aliases: CVE-2020-0830 GHSA-g644-6fg4-hrh9 |
Affected by 13 other vulnerabilities. |
|
|
VCID-sjmd-7dkx-zbe7
Aliases: CVE-2019-0925 GHSA-v648-p92f-9996 |
Affected by 67 other vulnerabilities. |
|
|
VCID-snry-d7yx-4fat
Aliases: CVE-2018-8288 GHSA-4f79-fxh8-vgq2 |
ChakraCore RCE Vulnerability |
Affected by 109 other vulnerabilities. |
|
VCID-sy64-2dpk-mfg2
Aliases: CVE-2019-0915 GHSA-fm9p-5m9f-rq85 |
Affected by 67 other vulnerabilities. |
|
|
VCID-t4un-mgyu-5ygy
Aliases: CVE-2017-11821 GHSA-rhwh-jw9h-4m49 |
Affected by 188 other vulnerabilities. Affected by 185 other vulnerabilities. |
|
|
VCID-tccq-phk6-auee
Aliases: CVE-2020-1172 GHSA-xxfr-jrgh-x392 |
Affected by 3 other vulnerabilities. |
|
|
VCID-tekc-fua6-h7d2
Aliases: CVE-2018-0930 GHSA-wc4x-9h9p-9494 |
ChakraCore RCE Vulnerability |
Affected by 145 other vulnerabilities. |
|
VCID-tfrm-dxge-zqb2
Aliases: CVE-2018-8290 GHSA-vgxq-xv7f-jxjx |
ChakraCore RCE Vulnerability |
Affected by 117 other vulnerabilities. Affected by 109 other vulnerabilities. |
|
VCID-tj3w-nwe8-gfa5
Aliases: CVE-2019-0611 GHSA-7ph8-f946-q5r7 |
High severity vulnerability that affects Microsoft.ChakraCore |
Affected by 88 other vulnerabilities. |
|
VCID-tjy6-fh7e-7kgm
Aliases: CVE-2018-8276 GHSA-wg47-6cqc-q52j |
Affected by 109 other vulnerabilities. |
|
|
VCID-ttk3-njgx-z3d7
Aliases: CVE-2019-0591 |
Affected by 95 other vulnerabilities. |
|
|
VCID-u3gd-3zh3-pkh5
Aliases: CVE-2019-1428 |
Affected by 33 other vulnerabilities. |
|
|
VCID-u4xm-vmnq-t7da
Aliases: CVE-2018-8130 GHSA-3fvw-g6mr-w247 |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-u5xy-m1gj-y7cd
Aliases: CVE-2017-11908 GHSA-923j-972p-hchf |
Affected by 172 other vulnerabilities. |
|
|
VCID-ugmy-rkn2-1ycu
Aliases: CVE-2020-0712 GHSA-w6qf-35f2-j6h7 |
Affected by 28 other vulnerabilities. |
|
|
VCID-uqy3-g9wb-47fs
Aliases: CVE-2018-0778 |
Affected by 156 other vulnerabilities. |
|
|
VCID-uvh9-q8y2-cuht
Aliases: CVE-2020-1037 GHSA-8xv4-c7rq-j577 |
Affected by 10 other vulnerabilities. Affected by 9 other vulnerabilities. |
|
|
VCID-uyn3-mh4g-vudx
Aliases: CVE-2018-8128 |
Affected by 125 other vulnerabilities. |
|
|
VCID-uynd-t1v4-w7ee
Aliases: CVE-2018-0993 GHSA-7c7v-g484-j4cf |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-v9cg-cbcp-rue9
Aliases: CVE-2016-3248 GHSA-q6mv-8vh9-4ggj |
There are no reported fixed by versions. | |
|
VCID-vcga-jhb2-xfgv
Aliases: CVE-2020-0828 GHSA-c8qc-62qv-5p2x |
Affected by 13 other vulnerabilities. |
|
|
VCID-vjpt-sxhr-4qcz
Aliases: CVE-2018-0994 GHSA-g549-jfg6-98ch |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. |
|
VCID-vt31-auyb-a3bs
Aliases: CVE-2019-1003 GHSA-w32p-76xr-88pc |
Affected by 56 other vulnerabilities. |
|
|
VCID-vv95-3ec7-xuc5
Aliases: CVE-2019-0593 |
Affected by 95 other vulnerabilities. |
|
|
VCID-w9ka-hv5q-6qf2
Aliases: CVE-2018-0758 |
Affected by 156 other vulnerabilities. |
|
|
VCID-wc4q-2pmj-vua7
Aliases: CVE-2020-0831 GHSA-h2xm-2p6w-mj2v |
Affected by 13 other vulnerabilities. |
|
|
VCID-wkac-zqs8-uffk
Aliases: CVE-2016-3389 GHSA-294j-r53x-w786 |
Affected by 212 other vulnerabilities. |
|
|
VCID-wmd6-53yt-7kau
Aliases: CVE-2019-0806 GHSA-hg36-rmmm-hc5r |
ChakraCore RCE Vulnerability |
Affected by 81 other vulnerabilities. |
|
VCID-wn8w-224k-sugb
Aliases: CVE-2017-8659 GHSA-h6m7-jphx-f9p5 |
Affected by 0 other vulnerabilities. Affected by 192 other vulnerabilities. |
|
|
VCID-wp7n-38ds-x7af
Aliases: CVE-2019-1307 GHSA-6j89-jhpr-849f |
Affected by 36 other vulnerabilities. |
|
|
VCID-wy4z-ugeu-d7hk
Aliases: CVE-2019-0937 GHSA-8gvg-8vhf-h26g |
Affected by 67 other vulnerabilities. |
|
|
VCID-x26m-6x8r-g7g4
Aliases: CVE-2019-0810 GHSA-2mmc-5phj-4wjj |
ChakraCore RCE Vulnerability |
Affected by 81 other vulnerabilities. |
|
VCID-x2d9-182m-muan
Aliases: CVE-2018-8279 |
Affected by 117 other vulnerabilities. |
|
|
VCID-x3sr-1ktb-hkck
Aliases: CVE-2018-0775 |
Affected by 156 other vulnerabilities. |
|
|
VCID-x5pd-uayn-gqgb
Aliases: CVE-2020-0812 GHSA-g67x-mgrv-m3gv |
Affected by 13 other vulnerabilities. |
|
|
VCID-xm5h-d9v5-kkgt
Aliases: CVE-2020-0711 GHSA-63fw-7jgf-5hwv |
Affected by 28 other vulnerabilities. |
|
|
VCID-xmu4-9t6k-tqhx
Aliases: CVE-2019-1103 GHSA-vmf5-924f-25f2 |
Affected by 50 other vulnerabilities. |
|
|
VCID-xqpe-h9ym-mqep
Aliases: CVE-2018-8137 GHSA-frh8-wrx9-gc53 |
ChakraCore RCE Vulnerability |
Affected by 125 other vulnerabilities. Affected by 123 other vulnerabilities. |
|
VCID-xqwq-egqb-sbhn
Aliases: CVE-2017-11919 |
Affected by 172 other vulnerabilities. |
|
|
VCID-xrry-7ms1-zkc1
Aliases: CVE-2019-0829 GHSA-5rq3-9wc9-m9c3 |
ChakraCore Memory Corruption Vulnerability |
Affected by 81 other vulnerabilities. |
|
VCID-y6a1-rzcv-w3aj
Aliases: CVE-2018-0770 |
Affected by 156 other vulnerabilities. |
|
|
VCID-yd8y-tp5t-yyae
Aliases: CVE-2018-0762 |
Affected by 156 other vulnerabilities. |
|
|
VCID-ytpg-9myh-pfbd
Aliases: CVE-2019-1197 GHSA-v89p-5hr2-4rh4 |
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Microsoft Edge (HTML-based) and then convince a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. These websites could contain specially crafted content that could exploit the vulnerability. The security update addresses the vulnerability by modifying how the Chakra scripting engine handles objects in memory. |
Affected by 43 other vulnerabilities. |
|
VCID-z21v-h4sw-43gy
Aliases: CVE-2019-0648 GHSA-wwfw-m54g-gv72 |
ChakraCore information disclosure vulnerability |
Affected by 95 other vulnerabilities. |
|
VCID-z4gd-7ef1-b3g5
Aliases: CVE-2017-11909 GHSA-9qpf-v72j-j9qh |
Affected by 172 other vulnerabilities. |
|
|
VCID-z5yr-4vva-rkgy
Aliases: CVE-2019-1141 GHSA-cwp9-956f-vcwh |
Affected by 43 other vulnerabilities. |
|
|
VCID-z8bj-s17p-zfe8
Aliases: CVE-2019-0993 GHSA-2rfj-2mwp-787v |
Affected by 56 other vulnerabilities. |
|
|
VCID-zdz3-meez-bba5
Aliases: CVE-2016-7240 GHSA-hh3v-5chw-wgh7 |
Affected by 202 other vulnerabilities. |
|
|
VCID-zm8m-a28d-2qct
Aliases: CVE-2016-7208 GHSA-vx5c-598g-qpg6 |
Affected by 202 other vulnerabilities. |
|
|
VCID-zmeu-dnde-sycb
Aliases: CVE-2017-11801 GHSA-f8f9-q5hg-9c7q |
Affected by 185 other vulnerabilities. |
|
|
VCID-zqxu-qcm5-nfc8
Aliases: CVE-2017-11911 GHSA-qfcq-4vv7-9mq7 |
Affected by 172 other vulnerabilities. |