vulnerability
Microsoft Windows: CVE-2018-8555: Chakra Scripting Engine Memory Corruption Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:H/Au:N/C:C/I:C/A:C) | Nov 13, 2018 | Nov 13, 2018 | Sep 5, 2025 |
Severity
8
CVSS
(AV:N/AC:H/Au:N/C:C/I:C/A:C)
Published
Nov 13, 2018
Added
Nov 13, 2018
Modified
Sep 5, 2025
Description
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8541, CVE-2018-8542, CVE-2018-8543, CVE-2018-8551, CVE-2018-8556, CVE-2018-8557, CVE-2018-8588.
Solutions
microsoft-windows-windows_10-1507-kb4467680microsoft-windows-windows_10-1607-kb4467691microsoft-windows-windows_10-1703-kb4467696microsoft-windows-windows_10-1709-kb4467686microsoft-windows-windows_10-1803-kb4467702microsoft-windows-windows_10-1809-kb4467708microsoft-windows-windows_server_2016-1607-kb4467691microsoft-windows-windows_server_2019-1809-kb4467708
References
- BID-105775
- CVE-2018-8555
- https://attackerkb.com/topics/CVE-2018-8555
- CWE-787
- https://support.microsoft.com/help/4467680
- https://support.microsoft.com/help/4467686
- https://support.microsoft.com/help/4467691
- https://support.microsoft.com/help/4467696
- https://support.microsoft.com/help/4467702
- https://support.microsoft.com/help/4467708
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.