| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2020-17131 | Chakra Scripting Engine Memory Corruption Vulnerability | Microsoft Edge | Critical | 11-12-2020 |
Technical Information
Brief overview of the risk:
A memory corruption vulnerability exists when Chakra Scripting Engine improperly handles objects in memory.There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Chakra Scripting Engine handles objects in memory.
Further information on this vulnerability is available at : CVE-2020-17131
Affected Software
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for x64-based SystemsMicrosoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows Server 2019
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for x64-based Systems