Unrated severityCISA KEVNVD Advisory· Published Dec 20, 2018· Updated Oct 21, 2025

CVE-2018-8653

Description

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8643.

Affected products

Microsoft/Internet Explorer 10v5
Range: Windows Server 2012
Microsoft/Internet Explorer 11v5
Range: Windows 10 for 32-bit Systems
Microsoft/Internet Explorer 9v5
Range: Windows Server 2008 for 32-bit Systems Service Pack 2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/106255mitrevdb-entryx_refsource_BID
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8653mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.028
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000