VDB
CVE-2017-8658
CVE-2017-8658
PUBLISHED
CVSS 9.800000190734863 CRITICAL
ChakraCore RCE Vulnerability
EPSS 33.57% · 97.0th percentile
Risk Scores
CVSS 3.0
9.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
33.57%
97.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft Corporation | ChakraCore | ChakraCore V1.7.1 |
| NuGet | Microsoft.ChakraCore | 0 |
| microsoft | chakracore | 0 |
Exploit Intelligence
Timeline
- Aug 11, 2017 CVE Published
- Aug 24, 2017 CVE Updated
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 11, 2023 EPSS Score
- May 13, 2023 EPSS Score
References
- 100036 vdb
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8658 url
- https://portal.msrc.microsoft.com/fr-FR/security-guidance/advisory/ advisory
- https://nvd.nist.gov/vuln/detail/CVE-2017-8658 advisory
- https://github.com/chakra-core/ChakraCore/pull/3509 url
- https://github.com/chakra-core/ChakraCore/commit/2500e1cdc12cb35af73d5c8c9b85656aba6bab4d url
- https://github.com/chakra-core/ChakraCore package
- https://web.archive.org/web/20210124090857/http://www.securityfocus.com/bid/100036 url