CVE-2018-8377 — Out-of-bounds Write in Microsoft Edge
Severity
7.5HIGHNVD
EPSS
15.0%
top 5.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 15
Latest updateMay 13
Description
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8387.
CVSS vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9
Affected Packages1 packages
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-h978-6qh4-xpmc: A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerab↗2022-05-13
GHSA▶
GHSA-7h94-jvh4-7hc5: A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerab↗2022-05-13
CVEList▶
CVE-2018-8387: A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerab↗2018-08-15
CVEList▶
CVE-2018-8377: A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerab↗2018-08-15