CVE-2019-0918high
Description
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0884, CVE-2019-0911.
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0918
Details
Source: MITRE
Published: 2019-05-16
Updated: 2020-08-24
Type: CWE-787
Risk Information
CVSS v2
Base Score: 7.6
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 4.9
Severity: HIGH
CVSS v3
Base Score: 7.5
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.6
Severity: HIGH