Search for vulnerabilities
| Vulnerability ID | VCID-4k33-tc8h-tffb |
| Aliases |
CVE-2018-0767
|
| Summary | Out-of-bounds Read Microsoft Edge in Microsoft Windows, and Windows Server allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0780 and CVE-2018-0800. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| epss | 0.75639 | https://api.first.org/data/v1/epss?cve=CVE-2018-0767 |
| Data source | Exploit-DB |
|---|---|
| Date added | Jan. 11, 2018 |
| Description | Microsoft Edge Chakra - 'AppendLeftOverItemsFromEndSegment' Out-of-Bounds Read |
| Ransomware campaign use | Known |
| Source publication date | Jan. 11, 2018 |
| Exploit type | dos |
| Platform | windows |
| Source update date | Jan. 11, 2018 |
| Source URL | https://bugs.chromium.org/p/project-zero/issues/detail?id=1387 |
| Percentile | 0.98919 |
| EPSS Score | 0.75639 |
| Published At | June 4, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-02T04:37:24.708127+00:00 | GitLab Importer | Import | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.ChakraCore/CVE-2018-0767.yml | 38.6.0 |