CVE-2018-8276

A security feature bypass vulnerability exists in the Microsoft Chakra scripting engine that allows Control Flow Guard (CFG) to be bypassed, aka "Scripting Engine Security Feature Bypass Vulnerability." This affects Microsoft Edge, ChakraCore.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
microsoftedge
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/104626
http://www.securitytracker.com/id/1041256
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8276
http://www.securityfocus.com/bid/104626
http://www.securitytracker.com/id/1041256
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8276