← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-8298 — Actively Exploited: ChakraCore scripting engine (ChakraCore)

The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.

CVE IDCVE-2018-8298
VendorChakraCore
ProductChakraCore scripting engine
Vulnerability nameChakraCore Scripting Engine Type Confusion Vulnerability
Date added2022-03-03
Remediation due2022-03-17
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionThe ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →