vulnerability

Microsoft Windows: CVE-2017-0223: Scripting Engine Memory Corruption Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	May 19, 2017	May 23, 2017	Sep 3, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

May 19, 2017

Added

May 23, 2017

Modified

Sep 3, 2025

Description

A remote code execution vulnerability exists in Microsoft Chakra Core in the way JavaScript engines render when handling objects in memory. aka "Scripting Engine Memory Corruption Vulnerability". This vulnerability is unique from CVE-2017-0252.

Solution

microsoft-windows-windows_10-1703-kb4016871

References

CVE-2017-0223
https://attackerkb.com/topics/CVE-2017-0223
CWE-119
https://support.microsoft.com/help/4016871

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report