CVE-2018-8177
Description
A remote code execution vulnerability in Microsoft Edge's Chakra scripting engine due to memory corruption allows an attacker to execute arbitrary code in the context of the current user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A remote code execution vulnerability in Microsoft Edge's Chakra scripting engine due to memory corruption allows an attacker to execute arbitrary code in the context of the current user.
Vulnerability
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge [1]. This is a memory corruption vulnerability in ChakraCore, the open source JavaScript engine used by Microsoft Edge [3]. The vulnerability specifically involves a speculative type confusion on PropertyString, as evidenced by a fix in the ChakraCore repository [4]. The affected versions include all versions of Microsoft Edge on various Windows 10 platforms, as indicated by the SecurityFocus entry for related CVE-2018-8137 [2].
Exploitation
To exploit this vulnerability, an attacker would need to host a specially crafted website and then convince a user to view it in Microsoft Edge [1]. The attacker could also embed an ActiveX control marked "safe for initialization" in an application or Microsoft Office document that hosts the Edge rendering engine. The memory corruption occurs when the Chakra scripting engine improperly handles objects in memory during the processing of JavaScript code [1]. The exploit requires user interaction in the form of visiting a malicious webpage or opening a crafted document [1].
Impact
Successful exploitation allows an attacker to gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights [1]. This represents a complete compromise of confidentiality, integrity, and availability (CIA).
Mitigation
Microsoft released a security update to address this vulnerability as part of the May 2018 Patch Tuesday updates [1]. Users should apply the latest updates for Microsoft Edge and Windows 10. For ChakraCore users, Microsoft provided security updates for ChakraCore 1.11 until March 9, 2021, after which it became a community-supported project [3]. The fix is implemented in commit eb4b00bcd61a56d5ac66f4155870cba3178d3273 in the ChakraCore repository [4]. No workarounds are documented other than applying the patch.
AI Insight generated on May 22, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
Microsoft.ChakraCoreNuGet | < 1.8.4 | 1.8.4 |
Affected products
2- Range: ChakraCore
Patches
1eb4b00bcd61a[CVE-2018-8177] Edge - Speculative type confusion on PropertyString
1 file changed · +2 −1
lib/Backend/Lower.cpp+2 −1 modified@@ -15260,13 +15260,14 @@ Lowerer::GenerateFastElemIStringIndexCommon(IR::Instr * instrInsert, bool isStor IR::IndirOpnd::New(indexOpnd, 0, TyMachPtr, m_func), LoadVTableValueOpnd(instrInsert, VTableValue::VtablePropertyString), Js::OpCode::BrNeq_A, notPropStrLabel, instrInsert); - InsertBranch(Js::OpCode::Br, propStrLoadedLabel, instrInsert); if (!isStore) { InsertObjectPoison(indexOpnd, branchInstr, instrInsert); } + InsertBranch(Js::OpCode::Br, propStrLoadedLabel, instrInsert); + instrInsert->InsertBefore(notPropStrLabel); branchInstr = InsertCompareBranch(
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
6- github.com/advisories/GHSA-7cc5-cqmx-9v7gghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-8177ghsaADVISORY
- www.securityfocus.com/bid/104090mitrevdb-entryx_refsource_BID
- github.com/chakra-core/ChakraCore/commit/eb4b00bcd61a56d5ac66f4155870cba3178d3273ghsaWEB
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8177ghsax_refsource_CONFIRMWEB
- web.archive.org/web/20210124164218/http://www.securityfocus.com/bid/103967ghsaWEB
News mentions
0No linked articles in our index yet.