cbcvebase.
CVE-2018-8653
published 2018-12-20

CVE-2018-8653: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory…

PriorityP279high7.5CVSS 3.1
AVNACHPRNUIRSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-05-03
Exploited in the wild
EPSS
29.82%
98.0th percentile
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8643.

Affected

6 ranges
VendorProductVersion rangeFixed in
microsoftinternet_explorer
microsoftinternet_explorer
microsoftinternet_explorer
msrcinternet_explorer_10
msrcinternet_explorer_11
msrcinternet_explorer_9

Detection & IOCsextracted from sources · hover to see the quote

  • CVE-2018-8653 was being actively exploited in targeted attacks at time of patch release; multiple exploit kits incorporated publicly released PoC code — prioritize detection on systems running IE 9, 10, and 11.
  • Spear phishing via email or social media is the primary delivery mechanism to lure users to exploit pages; correlate suspicious IE launches from email clients or social media links.
  • ·Affects all versions of IE (9, 10, 11) across a wide range of Windows OS versions; scope of affected systems is broad.
  • ·Attacker gains the same privilege level as the logged-in user, including full admin rights if the user is an administrator — highest impact on non-standard-user configurations.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.07.6HIGHAV:N/AC:H/Au:N/C:C/I:C/A:C
vulncheck7.5HIGH
cisa7.5HIGH
vendor_msrc6.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.