vulnerability
Microsoft Windows: CVE-2018-8276: Scripting Engine Security Feature Bypass Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Jul 10, 2018 | Jul 10, 2018 | Sep 3, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Jul 10, 2018
Added
Jul 10, 2018
Modified
Sep 3, 2025
Description
A security feature bypass vulnerability exists in the Microsoft Chakra scripting engine that allows Control Flow Guard (CFG) to be bypassed, aka "Scripting Engine Security Feature Bypass Vulnerability." This affects Microsoft Edge, ChakraCore.
Solutions
microsoft-windows-windows_10-1703-kb4338826microsoft-windows-windows_10-1703-kb4345419microsoft-windows-windows_10-1709-kb4338825microsoft-windows-windows_10-1709-kb4345420microsoft-windows-windows_10-1803-kb4338819microsoft-windows-windows_10-1803-kb4345421
References
- BID-104626
- CVE-2018-8276
- https://attackerkb.com/topics/CVE-2018-8276
- URL-https://support.microsoft.com/help/4338819
- URL-https://support.microsoft.com/help/4338825
- URL-https://support.microsoft.com/help/4338826
- URL-https://support.microsoft.com/help/4345419
- URL-https://support.microsoft.com/help/4345420
- URL-https://support.microsoft.com/help/4345421
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.