← voltar
CVE-2018-8372

CVE-2018-8372

EPSS 24.8%
Vexday Risk Score
8Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 24.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
15 ago 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-8359, CVE-2018-8371, CVE-2018-8373, CVE-2018-8385, CVE-2018-8389, CVE-2018-8390.
Produtos afetados
Microsoft · ChakraCoreMicrosoft · Internet Explorer 11Microsoft · Microsoft Edge

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8372http://www.securityfocus.com/bid/105038http://www.securitytracker.com/id/1041457