A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0539, CVE-2019-0568.
http://www.securityfocus.com/bid/106418
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0567
Source: MITRE
Published: 2019-01-08
Updated: 2020-08-24
Type: CWE-787
Base Score: 7.6
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 4.9
Severity: HIGH
Base Score: 7.5
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.6
Severity: HIGH
OR
AND
OR
OR
cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
121018 | KB4480973: Windows 10 Version 1703 January 2019 Security Update | Nessus | Windows : Microsoft Bulletins | high |
121013 | KB4480962: Windows 10 January 2019 Security Update | Nessus | Windows : Microsoft Bulletins | high |
121012 | KB4480961: Windows 10 Version 1607 and Windows Server 2016 January 2019 Security Update | Nessus | Windows : Microsoft Bulletins | high |
121011 | KB4480116: Windows 10 Version 1809 and Windows Server 2019 January 2019 Security Update | Nessus | Windows : Microsoft Bulletins | high |