CVE-2018-8276
N/A
N/A
Summary
A security feature bypass vulnerability exists in the Microsoft Chakra scripting engine that allows Control Flow Guard (CFG) to be bypassed, aka "Scripting Engine Security Feature Bypass Vulnerability." This affects Microsoft Edge, ChakraCore.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft Edge | Windows 10 Version 1703 for 32-bit Systems | affected |
| Microsoft | Microsoft Edge | Windows 10 Version 1703 for x64-based Systems | affected |
| Microsoft | Microsoft Edge | Windows 10 Version 1709 for 32-bit Systems | affected |
| Microsoft | Microsoft Edge | Windows 10 Version 1709 for x64-based Systems | affected |
| Microsoft | Microsoft Edge | Windows 10 Version 1803 for 32-bit Systems | affected |
| Microsoft | Microsoft Edge | Windows 10 Version 1803 for x64-based Systems | affected |
| Microsoft | ChakraCore | ChakraCore | affected |
Weaknesses
- Security Feature Bypass
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1041256
- http://www.securityfocus.com/bid/104626
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8276
References
- http://www.securitytracker.com/id/1041256
- http://www.securityfocus.com/bid/104626
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8276
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.