CVE-2018-0818

Summary

Microsoft ChakraCore allows an attacker to bypass Control Flow Guard (CFG) in conjunction with another vulnerability to run arbitrary code on a target system, due to how the Chakra scripting engine handles accessing memory, aka "Scripting Engine Security Feature Bypass".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationChakraCoreChakraCoreaffected

Weaknesses

  • Security Feature Bypass

ADP Enrichment

CVE Program Container

Additional References

References