| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2020-17048 | Chakra Scripting Engine Memory Corruption Vulnerability | Microsoft Edge | Critical | 13-11-2020 |
Technical Information
Brief overview of the risk:
A memory corruption vulnerability exists when Chakra Scripting Engine improperly handles objects in memory.There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Chakra Scripting Engine handles objects in memory.
Affected Software
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for x64-based SystemsMicrosoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1809 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows Server 2019
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1909 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1903 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for ARM64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 2004 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows Server 2016
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 20H2 for ARM64-based Systems