CVE-2019-1298

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-1298

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-1298.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-1298

Aliases

GHSA-2452-3rwv-x89c

Published

2019-09-11T22:15:18.837Z

Modified

2026-05-15T12:03:50.373707015Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1138, CVE-2019-1217, CVE-2019-1237, CVE-2019-1300.

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1298

CVE-2019-1298

Affected packages