High severity7.5NVD Advisory· Published Jul 11, 2017· Updated May 13, 2026

CVE-2017-8618

Description

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 Internet Explorer in the way affected Microsoft scripting engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-8596, CVE-2017-8610, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8606, CVE-2017-8607, CVE-2017-8608, CVE-2017-8619, CVE-2017-9598 and CVE-2017-8609.

Affected products

Microsoft/Internet Explorer3 versions
cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
Microsoft Corporation/Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016v5
Range: Internet Explorer

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8618nvdPatchVendor Advisory
www.exploit-db.com/exploits/42337/nvdExploitThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/99399nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038848nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.047
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000