CVE-2018-8391

描述

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8354, CVE-2018-8456, CVE-2018-8457, CVE-2018-8459.

受影響套件(1)

• NuGet/Microsoft.ChakraCorefrom 0, < 1.11.1

CVSS 分數

參考連結(4)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2018-8391
• PATCHhttps://github.com/chakra-core/ChakraCore
• WEBhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8391
• WEBhttps://web.archive.org/web/20210419154033/http://www.securityfocus.com/bid/105231