CVSS: 4.3EPSS: 12%CPEs: 2EXPL: 0CVE-2017-8659 – Microsoft Chakra JIT Server Out-Of-Bounds Write
https://notcve.org/view.php?id=CVE-2017-8659
08 Aug 2017 — Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system due to the Chakra scripting engine not properly handling objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". Microsoft Edge en Microsoft Windows 10 1703 permite que un atacante obtenga información para compromete aún más la seguridad del sistema del usuario debido a que el motor de scripting Chakra no gestiona correctamente los objetos en la memoria. Esto t... • http://www.securityfocus.com/bid/100029 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 81%CPEs: 5EXPL: 2CVE-2017-8646 – Microsoft Edge Chakra - 'InterpreterStackFrame::ProcessLinkFailedAsmJsModule' Incorrect Usage of 'PushPopFrameHelper' (Denial of Service)
https://notcve.org/view.php?id=CVE-2017-8646
08 Aug 2017 — Microsoft Edge in Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8634, CVE-2017-8635, CVE-2017-8636, CVE-2017-8638, CVE-2017-8639, CVE-2017-8640, CVE-2017-8641, CVE-2017-8645, CVE-2017-8647, CVE-2017-8655, CVE-2017-8656, CVE-2017... • https://packetstorm.news/files/id/143792 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 81%CPEs: 4EXPL: 2CVE-2017-8656 – Microsoft Edge Chakra - 'PreVisitCatch' Missing Call
https://notcve.org/view.php?id=CVE-2017-8656
08 Aug 2017 — Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8634, CVE-2017-8635, CVE-2017-8636, CVE-2017-8638, CVE-2017-8639, CVE-2017-8640, CVE-2017-8641, CVE-2017-8645, CVE-2017-8646, CVE-2017-8647, CVE-2017-8655, CVE-... • https://packetstorm.news/files/id/143789 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 79%CPEs: 4EXPL: 2CVE-2017-8670 – Microsoft Edge Chakra - Uninitialized Arguments
https://notcve.org/view.php?id=CVE-2017-8670
08 Aug 2017 — Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8634, CVE-2017-8635, CVE-2017-8636, CVE-2017-8638, CVE-2017-8639, CVE-2017-8640, CVE-2017-8641, CVE-2017-8645, CVE-2017-8646, CVE-2017-8647, CVE-2017-8655, CVE-... • https://packetstorm.news/files/id/143799 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 17%CPEs: 4EXPL: 0CVE-2017-8639
https://notcve.org/view.php?id=CVE-2017-8639
08 Aug 2017 — Microsoft Edge in Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8634, CVE-2017-8635, CVE-2017-8636, CVE-2017-8638, CVE-2017-8640, CVE-2017-8641, CVE-2017-8645, CVE-2017-8646, CVE-2017-8647, CVE-2017-8655, CVE-2017-8656, CVE-2017-8657,... • http://www.securityfocus.com/bid/100050 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 12%CPEs: 2EXPL: 0CVE-2017-8662
https://notcve.org/view.php?id=CVE-2017-8662
08 Aug 2017 — Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to disclose information due to how strings are validated in specific scenarios, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8644 and CVE-2017-8652. Microsoft Edge en Microsoft Windows 10 1703 permite que un atacante revele información debido a la forma en la que se validan los strings en escenarios específicos. Esto también se concoe como "Microsoft Edge Information Disclosure Vulnerability". Es... • http://www.securityfocus.com/bid/100031 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 79%CPEs: 16EXPL: 3CVE-2017-8641 – Microsoft Chakra eval Integer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-8641
08 Aug 2017 — Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8634, CVE-2017-8635, CVE-2017-8636, CVE-2017-8638,... • https://packetstorm.news/files/id/143865 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 22%CPEs: 16EXPL: 0CVE-2017-8653 – Microsoft Internet Explorer SVG Layout Uninitialized Memory Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-8653
08 Aug 2017 — Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user due to Microsoft browsers improperly accessing objects in memory, aka "Microsoft Browser Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8669. Los navegadores Microsoft en Microsoft Windows 7 SP1, Windows Serv... • http://www.securityfocus.com/bid/100059 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2017-8503 – Microsoft Edge XAML File Improper Access Control Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2017-8503
08 Aug 2017 — Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-8642. Microsoft Edge en Microsoft Windows 10 1511, 1607, 1703, y Windows Server 2016 permite que un atacante escape de la sandbox AppContainer. Esta vulnerabilidad también es denominada "Vulnerabilidad de elevación de privilegios de Microsoft Edge". Este ID CVE es exclusivo d... • http://www.securityfocus.com/bid/99395 •
CVSS: 7.6EPSS: 28%CPEs: 11EXPL: 0CVE-2017-0293 – Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-0293
08 Aug 2017 — Microsoft Windows PDF Library in Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability when it improperly handles objects in memory, aka "Windows PDF Remote Code Execution Vulnerability". Microsoft Windows PDF Library en Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012 Gold y R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, y Windows Server 2016 permit... • http://www.securityfocus.com/bid/100039 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •