CVE-2018-8298 - ChakraCore Scripting Engine Type Confusion Vulnerability
Project:ChakraCore
Product:ChakraCore scripting engine
Date Added:2022-03-03Due Date:2022-03-17
Vulnerability Name
ChakraCore Scripting Engine Type Confusion Vulnerability
Description
The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-8298