vulnerability
Microsoft Windows: CVE-2019-1366: Chakra Scripting Engine Memory Corruption Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:H/Au:N/C:C/I:C/A:C) | Oct 8, 2019 | Oct 8, 2019 | Sep 5, 2025 |
Severity
8
CVSS
(AV:N/AC:H/Au:N/C:C/I:C/A:C)
Published
Oct 8, 2019
Added
Oct 8, 2019
Modified
Sep 5, 2025
Description
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1307, CVE-2019-1308, CVE-2019-1335.
Solutions
microsoft-windows-windows_10-1507-kb4520011microsoft-windows-windows_10-1607-kb4519998microsoft-windows-windows_10-1703-kb4520010microsoft-windows-windows_10-1709-kb4520004microsoft-windows-windows_10-1803-kb4520008microsoft-windows-windows_10-1809-kb4519338microsoft-windows-windows_10-1903-kb4517389microsoft-windows-windows_server_2016-1607-kb4519998microsoft-windows-windows_server_2019-1809-kb4519338msft-kb4517389-c417813c-d3db-4b44-83f8-60de59e73b91
References
- CVE-2019-1366
- https://attackerkb.com/topics/CVE-2019-1366
- CWE-787
- URL-https://support.microsoft.com/help/4517389
- URL-https://support.microsoft.com/help/4519338
- URL-https://support.microsoft.com/help/4519998
- URL-https://support.microsoft.com/help/4520004
- URL-https://support.microsoft.com/help/4520008
- URL-https://support.microsoft.com/help/4520010
- URL-https://support.microsoft.com/help/4520011
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.