CVE-2020-23315Microsoft Chakracore vulnerability

3 documents3 sources
Severity
7.5HIGHNVD
EPSS
3.2%
top 13.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Chakracore
Timeline
PublishedJan 20
Latest updateJan 21

Description

There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 1.12.0.0-beta.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDmicrosoft/chakracore1.12.0.0

🔴Vulnerability Details

2
GHSA
GHSA-2hmc-2j98-55mm: There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 12022-01-21
CVEList
CVE-2020-23315: There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 12022-01-20
CVE-2020-23315 — Microsoft Chakracore vulnerability | cvebase