<< Back
CVE Number Vulnerability Product Severity Date
CVE-2020-17131 Chakra Scripting Engine Memory Corruption Vulnerability Microsoft Edge Critical 11-12-2020

Technical Information

Brief overview of the risk:

A memory corruption vulnerability exists when Chakra Scripting Engine improperly handles objects in memory.There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Chakra Scripting Engine handles objects in memory.

Further information on this vulnerability is available at : CVE-2020-17131

Affected Software

Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows Server 2019
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for x64-based Systems