We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2018-1022



Assignermicrosoft
Reserved2017-12-01
Published2018-05-09
Updated2024-08-05

Description

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951, CVE-2018-0953, CVE-2018-0954, CVE-2018-0955, CVE-2018-8114, CVE-2018-8122, CVE-2018-8128, CVE-2018-8137, CVE-2018-8139.

Problem types

Remote Code Execution

Product status

ChakraCore
affected

Windows 10 for 32-bit Systems
affected

Windows 10 for x64-based Systems
affected

Windows 10 Version 1607 for 32-bit Systems
affected

Windows 10 Version 1607 for x64-based Systems
affected

Windows 10 Version 1703 for 32-bit Systems
affected

Windows 10 Version 1703 for x64-based Systems
affected

Windows 10 Version 1709 for 32-bit Systems
affected

Windows 10 Version 1709 for x64-based Systems
affected

Windows 10 Version 1803 for 32-bit Systems
affected

Windows 10 Version 1803 for x64-based Systems
affected

Windows 7 for 32-bit Systems Service Pack 1
affected

Windows 7 for x64-based Systems Service Pack 1
affected

Windows 8.1 for 32-bit systems
affected

Windows 8.1 for x64-based systems
affected

Windows RT 8.1
affected

Windows Server 2008 R2 for x64-based Systems Service Pack 1
affected

Windows Server 2012 R2
affected

Windows Server 2016
affected

Windows 10 for 32-bit Systems
affected

Windows 10 for x64-based Systems
affected

Windows 10 Version 1607 for 32-bit Systems
affected

Windows 10 Version 1607 for x64-based Systems
affected

Windows 10 Version 1703 for 32-bit Systems
affected

Windows 10 Version 1703 for x64-based Systems
affected

Windows 10 Version 1709 for 32-bit Systems
affected

Windows 10 Version 1709 for x64-based Systems
affected

Windows 10 Version 1803 for 32-bit Systems
affected

Windows 10 Version 1803 for x64-based Systems
affected

Windows Server 2016
affected

References

http://www.securityfocus.com/bid/103978 (103978) vdb-entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1022

http://www.securitytracker.com/id/1040844 (1040844) vdb-entry

cve.org CVE-2018-1022

nvd.nist.gov CVE-2018-1022

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.