CVE-2020-17048

Опубликовано: 10 нояб. 2020

Источник: msrc

CVSS3: 4.2

EPSS Низкий

Описание

Chakra Scripting Engine Memory Corruption Vulnerability

Продукт	Статья	Обновление
ChakraCore	Release Notes	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for 32-bit Systems	4586781	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for 32-bit Systems	4586781	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for ARM64-based Systems	4586781	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for x64-based Systems	4586781	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for ARM64-based Systems	4586781	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for 32-bit Systems	4586785	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for x64-based Systems	4586785	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for ARM64-based Systems	4586785	Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for 32-bit Systems	4586793	Security Update

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 84%

0.02207

Низкий

4.2 Medium

CVSS3

CVE-2020-17048

CVSS3: 4.2

nvd

около 5 лет назад

Chakra Scripting Engine Memory Corruption Vulnerability

GHSA-vpc2-7xmf-ppmf

CVSS3: 8.1

github

больше 4 лет назад

Out-of-bounds Write in ChakraCore

BDU:2020-05244

CVSS3: 4.2

fstec

около 5 лет назад

Уязвимость обработчика JavaScript-сценариев ChakraCore браузера Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 84%

0.02207

Низкий

4.2 Medium

CVSS3