A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based)L, aka Chakra Scripting Engine Memory Corruption Vulnerability. This CVE ID is unique from CVE-2020-0811.

Affected Packages

NuGet Microsoft.ChakraCore

Affected versions: 0 (fixed in 1.11.17)

Related CVEs

CVE-2020-0812

Key Information

GHSA ID

GHSA-g67x-mgrv-m3gv

Published

May 24, 2022 5:10 PM

Last Modified

July 13, 2023 5:07 PM

CVSS Score

7.5 /10

Primary Ecosystem

NuGet

Primary Package

Microsoft.ChakraCore

GitHub Reviewed

✓ Yes

Dataset

Last updated: June 13, 2025 6:24 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.