CVSS: 9.3EPSS: 38%CPEs: 6EXPL: 0CVE-2017-11812 – Microsoft Chakra asm.js ArrayBuffer Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-11812
13 Oct 2017 — ChakraCore and Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11799, CVE-2017-11800, CVE-2017-11801, CVE-2017-11802, CVE-2017-11804, CVE-2017-11805, CVE-2017-11806, C... • http://www.securityfocus.com/bid/101139 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 20%CPEs: 3EXPL: 0CVE-2017-11821
https://notcve.org/view.php?id=CVE-2017-11821
13 Oct 2017 — ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11799, CVE-2017-11800, CVE-2017-11801, CVE-2017-11802, CVE-2017-11804, CVE-2017-11805, CVE-2017-11806, CVE-2017-11807, CVE-2017-11808, CVE-20... • http://www.securityfocus.com/bid/101123 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 29%CPEs: 1EXPL: 0CVE-2017-8658 – Microsoft Security Bulletin CVE Update for August, 2017
https://notcve.org/view.php?id=CVE-2017-8658
10 Aug 2017 — A remote code execution vulnerability exists in the way that the Chakra JavaScript engine renders when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". Existe una vulnerabilidad de ejecución remota de código que se manifiesta en la forma en la que el motor Chakra JavaScript renderiza cuando gestiona objetos en la memoria. Esto también se conoce como "Scripting Engine Memory Corruption Vulnerability". This Microsoft bulletin summary lists one CVE that has undergone a major ... • http://www.securityfocus.com/bid/100036 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •