CVE-2019-1298

Name of the Vulnerable Software and Affected Versions Microsoft Edge (affected versions not specified)

Description The issue exists due to errors in handling objects in memory by the ChakraCore JavaScript engine. It may allow a remote attacker to execute arbitrary code or gain elevated privileges by using a specially crafted web page. If successfully exploited, an attacker could gain the same user rights as the current user, potentially taking control of the affected system if the current user has administrative rights. This could enable the attacker to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.