CVE-2018-8298

Sažetak

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-8287, CVE-2018-8288, CVE-2018-8291, CVE-2018-8296.

Reference

http://www.securityfocus.com/bid/104639
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8298
https://www.exploit-db.com/exploits/45217/
http://www.securityfocus.com/bid/104639
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8298
https://www.exploit-db.com/exploits/45217/

CVSS

Base:	7.6
Impact:	10.0
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:H/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

07-02-2025 - 17:15

Objavljeno

11-07-2018 - 00:29