CVE-2018-8178

HIGH

Description

A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka "Microsoft Browser Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge.

References

http://www.securityfocus.com/bid/104076

http://www.securitytracker.com/id/1040844

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8178

Details

Source: MITRE

Published: 2018-05-09

Updated: 2018-06-04

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 7.6

Vector: (AV:N/AC:H/Au:N/C:C/I:C/A:C)

Impact Score: 10

Exploitability Score: 4.9

Severity: HIGH

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.6

Severity: HIGH