High severity8.1NVD Advisory· Published Jul 17, 2017· Updated Jun 17, 2026
CVE-2017-0152
CVE-2017-0152
Description
A remote code execution vulnerability exists in the way affected Microsoft scripting engine render when handling objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user, aka "Scripting Engine Memory Corruption Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Microsoft Corporation/Microsoft ChakraCorev5Range: Microsoft ChakraCore
Patches
Vulnerability mechanics
References
1- github.com/Microsoft/ChakraCore/commit/9da019424601325a6e95e6be0fa03d7d21d0b517nvdIssue TrackingPatchThird Party Advisory
News mentions
0No linked articles in our index yet.