VYPR
Get started
← All advisories
High severityNVD Advisory· Published Nov 10, 2021· Updated Aug 4, 2024

Chakra Scripting Engine Memory Corruption Vulnerability

CVE-2021-42279

Description

Chakra Scripting Engine Memory Corruption Vulnerability

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
Microsoft.ChakraCoreNuGet
<= 1.11.24

Affected products

11
  • Microsoft/Windows 10 1507v5
    cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x86:*
    Range: 10.0.0
  • Microsoft/Windows 10 1607v5
    cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x86:*
    Range: 10.0.0
  • Microsoft/Windows 10 1809v53 versions
    cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:arm64:*+ 2 more
    • cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:arm64:*range: 10.0.0
    • cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1916:*:*:*:*:*:x64:*range: 10.0.0
    • cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1348:*:*:*:*:*:x64:*range: 10.0.0
  • Microsoft/Windows 10 20h2v5
    cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:arm64:*
    Range: 10.0.0
  • Microsoft/Windows 10 21h1v5
    cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x64:*
    Range: 10.0.0
  • Microsoft/Windows 11 21h2v5
    cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:arm64:*
    Range: 10.0.0
  • Microsoft/Windows Server 2016v5
    cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*
    Range: 10.0.0
  • Microsoft/Windows Server 2019v5
    cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*
    Range: 10.0.0
  • Microsoft/Windows Server 2022v5
    cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.350:*:*:*:*:*:*:*
    Range: 10.0.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.