PT-2017-18457 · Microsoft · Chakra Javascript Engine

Published

2017-08-11

·

Updated

2022-05-17

·

CVE-2017-8658

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Chakra JavaScript engine (affected versions not specified)
Description A remote code execution issue exists due to the way the Chakra JavaScript engine handles objects in memory.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2017-8658
GHSA-8V2H-4JPM-3WFM

Affected Products

Chakra Javascript Engine