Multiple vulnerabilities in Microsoft ChakraCore

Описание

Multiple serious vulnerabilities have been found in Microsoft ChakraCore. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

1. An incorrect handling of objects in memory of Chakra scripting engine can be exploited locally via unspecified attack vector to execute arbitrary code;
2. Memory corruption vulnerability in ChakraCore scripting engine can be exploited locally via unspecified attack vector to execute arbitrary code.

Первичный источник обнаружения

• CVE-2018-8227
  CVE-2018-8229
  CVE-2018-8243
  

Связанные продукты

• ChakraCore

Список CVE

• CVE-2018-8227
  unknown
• CVE-2018-8229
  unknown
• CVE-2018-8243
  unknown

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com