CVE-2018-8298

ChakraCore Scripting Engine Type Confusion Vulnerability

The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution. Vendor/Product: ChakraCore ChakraCore scripting engine. Added to CISA KEV 2022-03-03; required action: Apply updates per vendor instructions.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2018-8298