VYPR
← All advisories
High severityNVD Advisory· Published Nov 14, 2018· Updated Aug 5, 2024

CVE-2018-8557

CVE-2018-8557

Description

A memory corruption vulnerability in Chakra/Edge allows remote code execution via crafted content, patched Nov 2018.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A memory corruption vulnerability in Chakra/Edge allows remote code execution via crafted content, patched Nov 2018.

Vulnerability

CVE-2018-8557 is a remote code execution vulnerability in the Chakra scripting engine that affects Microsoft Edge and ChakraCore. The bug is a memory corruption issue that occurs when the engine improperly handles objects in memory. Affected versions include Microsoft Edge on all Windows 10 releases and corresponding ChakraCore builds prior to the November 2018 servicing update [1][2].

Exploitation

An attacker can exploit this vulnerability by hosting specially crafted content on a website and convincing a user to view that page in Microsoft Edge, or by embedding such content in an email or instant message that opens Edge. No additional privileges or user interaction beyond browsing are required; the target user simply needs to load the malicious content [1][3].

Impact

Successful exploitation allows the attacker to execute arbitrary code in the context of the current user. This can lead to full compromise of the target system, including the ability to install programs, view, change, or delete data, and create new accounts with full user rights. The attacker gains the same privileges as the logged-on user [1][3].

Mitigation

Microsoft released a fix on November 13, 2018, as part of the November 2018 security update for Microsoft Edge and ChakraCore. Users should apply the update through Windows Update or by installing the relevant patch. For ChakraCore, the fix is available in commit referenced in pull request #5827 [4]. No workarounds are provided; the only mitigation is to install the update [3][4].

References
  1. NVD - CVE-2018-8557
  2. Microsoft ChakraCore Scripting Engine CVE-2018-8557 Remote Memory Corruption Vulnerability
  3. Microsoft Edge Multiple Bugs Let Remote Users Execute Arbitrary Code and Obtain Conduct Cross-Site Scripting Attacks on the Target System
  4. November, 2018 Servicing Update by pleath · Pull Request #5827 · chakra-core/ChakraCore

AI Insight generated on May 22, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
Microsoft.ChakraCoreNuGet
< 1.11.31.11.3

Affected products

3

Patches

1
e73f2fff33c2

CVE-2018-8557

https://github.com/chakra-core/ChakraCorePaul LeathersOct 9, 2018via ghsa
commit
1 file changed · +2 14
  • lib/Backend/GlobOptFields.cpp+2 14 modified
    @@ -1900,20 +1900,8 @@ GlobOpt::UpdateObjPtrValueType(IR::Opnd * opnd, IR::Instr * instr)
         switch (typeId)
         {
         default:
-            if (typeId > Js::TypeIds_LastStaticType)
-            {
-                Assert(typeId != Js::TypeIds_Proxy);
-                if (objValueType.IsLikelyArrayOrObjectWithArray())
-                {
-                    // If we have likely object with array before, we can't make it definite object with array
-                    // since we have only proved that it is an object.
-                    // Keep the likely array or object with array.
-                }
-                else
-                {
-                    newValueType = ValueType::GetObject(ObjectType::Object);
-                }
-            }
+            // Can't mark as definite object because it may actually be object-with-array.
+            // Consider: a value type that subsumes object, array, and object-with-array.
             break;
         case Js::TypeIds_NativeIntArray:
         case Js::TypeIds_NativeFloatArray:

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

9

News mentions

0

No linked articles in our index yet.