Vulnerability Details CVE-2017-11858
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how Microsoft browsers handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11836, CVE-2017-11837, CVE-2017-11838, CVE-2017-11839, CVE-2017-11840, CVE-2017-11841, CVE-2017-11843, CVE-2017-11846, CVE-2017-11859, CVE-2017-11861, CVE-2017-11862, CVE-2017-11866, CVE-2017-11869, CVE-2017-11870, CVE-2017-11871, and CVE-2017-11873.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.202
EPSS Ranking 95.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.6
References
- http://www.securityfocus.com/bid/101716
- http://www.securitytracker.com/id/1039780
- http://www.securitytracker.com/id/1039781
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11858
- http://www.securityfocus.com/bid/101716
- http://www.securitytracker.com/id/1039780
- http://www.securitytracker.com/id/1039781
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11858
Products affected by CVE-2017-11858
-
cpe:2.3:a:microsoft:chakracore:-
-
cpe:2.3:a:microsoft:chakracore:1.10.0
-
cpe:2.3:a:microsoft:chakracore:1.10.1
-
cpe:2.3:a:microsoft:chakracore:1.10.2
-
cpe:2.3:a:microsoft:chakracore:1.11.0
-
cpe:2.3:a:microsoft:chakracore:1.11.1
-
cpe:2.3:a:microsoft:chakracore:1.11.10
-
cpe:2.3:a:microsoft:chakracore:1.11.11
-
cpe:2.3:a:microsoft:chakracore:1.11.12
-
cpe:2.3:a:microsoft:chakracore:1.11.13
-
cpe:2.3:a:microsoft:chakracore:1.11.14
-
cpe:2.3:a:microsoft:chakracore:1.11.15
-
cpe:2.3:a:microsoft:chakracore:1.11.16
-
cpe:2.3:a:microsoft:chakracore:1.11.17
-
cpe:2.3:a:microsoft:chakracore:1.11.18
-
cpe:2.3:a:microsoft:chakracore:1.11.19
-
cpe:2.3:a:microsoft:chakracore:1.11.2
-
cpe:2.3:a:microsoft:chakracore:1.11.20
-
cpe:2.3:a:microsoft:chakracore:1.11.21
-
cpe:2.3:a:microsoft:chakracore:1.11.22
-
cpe:2.3:a:microsoft:chakracore:1.11.23
-
cpe:2.3:a:microsoft:chakracore:1.11.3
-
cpe:2.3:a:microsoft:chakracore:1.11.4
-
cpe:2.3:a:microsoft:chakracore:1.11.5
-
cpe:2.3:a:microsoft:chakracore:1.11.6
-
cpe:2.3:a:microsoft:chakracore:1.11.7
-
cpe:2.3:a:microsoft:chakracore:1.11.8
-
cpe:2.3:a:microsoft:chakracore:1.11.9
-
cpe:2.3:a:microsoft:chakracore:1.12.0.0
-
cpe:2.3:a:microsoft:chakracore:1.2.0
-
cpe:2.3:a:microsoft:chakracore:1.2.0.0
-
cpe:2.3:a:microsoft:chakracore:1.2.1
-
cpe:2.3:a:microsoft:chakracore:1.2.2
-
cpe:2.3:a:microsoft:chakracore:1.2.3
-
cpe:2.3:a:microsoft:chakracore:1.3.0
-
cpe:2.3:a:microsoft:chakracore:1.3.1
-
cpe:2.3:a:microsoft:chakracore:1.3.2
-
cpe:2.3:a:microsoft:chakracore:1.4.0
-
cpe:2.3:a:microsoft:chakracore:1.4.1
-
cpe:2.3:a:microsoft:chakracore:1.4.2
-
cpe:2.3:a:microsoft:chakracore:1.4.3
-
cpe:2.3:a:microsoft:chakracore:1.4.4
-
cpe:2.3:a:microsoft:chakracore:1.4.5
-
cpe:2.3:a:microsoft:chakracore:1.5.0
-
cpe:2.3:a:microsoft:chakracore:1.5.1
-
cpe:2.3:a:microsoft:chakracore:1.5.2
-
cpe:2.3:a:microsoft:chakracore:1.5.3
-
cpe:2.3:a:microsoft:chakracore:1.6.0
-
cpe:2.3:a:microsoft:chakracore:1.6.1
-
cpe:2.3:a:microsoft:chakracore:1.6.2
-
cpe:2.3:a:microsoft:chakracore:1.7.0
-
cpe:2.3:a:microsoft:chakracore:1.7.1
-
cpe:2.3:a:microsoft:chakracore:1.7.2
-
cpe:2.3:a:microsoft:chakracore:1.7.3
-
cpe:2.3:a:microsoft:chakracore:1.7.4
-
cpe:2.3:a:microsoft:chakracore:1.7.5
-
cpe:2.3:a:microsoft:chakracore:1.7.6
-
cpe:2.3:a:microsoft:chakracore:1.8.0
-
cpe:2.3:a:microsoft:chakracore:1.8.1
-
cpe:2.3:a:microsoft:chakracore:1.8.2
-
cpe:2.3:a:microsoft:chakracore:1.8.3
-
cpe:2.3:a:microsoft:chakracore:1.8.4
-
cpe:2.3:a:microsoft:chakracore:1.8.5
-
cpe:2.3:a:microsoft:edge:-
-
cpe:2.3:a:microsoft:edge:108.0.1462.42
-
cpe:2.3:a:microsoft:edge:112.0.1722.34
-
cpe:2.3:a:microsoft:edge:114.0.1823.82
-
cpe:2.3:a:microsoft:edge:116.0.1938.98
-
cpe:2.3:a:microsoft:edge:117.0.2045.47
-
cpe:2.3:a:microsoft:edge:118.0.2088.88
-
cpe:2.3:a:microsoft:edge:122.0.2365.63
-
cpe:2.3:a:microsoft:edge:122.0.2365.92
-
cpe:2.3:a:microsoft:edge:123.0.2420.53
-
cpe:2.3:a:microsoft:edge:124.0.2478.105
-
cpe:2.3:a:microsoft:edge:124.0.2478.109
-
cpe:2.3:a:microsoft:edge:124.0.2478.121
-
cpe:2.3:a:microsoft:edge:124.0.2478.127
-
cpe:2.3:a:microsoft:edge:124.0.2478.131
-
cpe:2.3:a:microsoft:edge:124.0.2478.51
-
cpe:2.3:a:microsoft:edge:124.0.2478.67
-
cpe:2.3:a:microsoft:edge:124.0.2478.80
-
cpe:2.3:a:microsoft:edge:124.0.2478.97
-
cpe:2.3:a:microsoft:edge:125.0.2535.51
-
cpe:2.3:a:microsoft:edge:125.0.2535.67
-
cpe:2.3:a:microsoft:edge:125.0.2535.79
-
cpe:2.3:a:microsoft:edge:125.0.2535.85
-
cpe:2.3:a:microsoft:edge:125.0.2535.92
-
cpe:2.3:a:microsoft:edge:126.0.2592.102
-
cpe:2.3:a:microsoft:edge:126.0.2592.113
-
cpe:2.3:a:microsoft:edge:126.0.2592.56
-
cpe:2.3:a:microsoft:edge:126.0.2592.61
-
cpe:2.3:a:microsoft:edge:126.0.2592.68
-
cpe:2.3:a:microsoft:edge:126.0.2592.81
-
cpe:2.3:a:microsoft:edge:126.0.2592.87
-
cpe:2.3:a:microsoft:edge:127.0.2651.74
-
cpe:2.3:a:microsoft:edge:79.0.309.68
-
cpe:2.3:a:microsoft:edge:80.0.361.109
-
cpe:2.3:a:microsoft:edge:80.0.361.111
-
cpe:2.3:a:microsoft:edge:80.0.361.48
-
cpe:2.3:a:microsoft:edge:80.0.361.50
-
cpe:2.3:a:microsoft:edge:80.0.361.54
-
cpe:2.3:a:microsoft:edge:80.0.361.56
-
cpe:2.3:a:microsoft:edge:80.0.361.57
-
cpe:2.3:a:microsoft:edge:80.0.361.62
-
cpe:2.3:a:microsoft:edge:80.0.361.66
-
cpe:2.3:a:microsoft:edge:80.0.361.69
-
cpe:2.3:a:microsoft:edge:81.0.416.53
-
cpe:2.3:a:microsoft:edge:81.0.416.58
-
cpe:2.3:a:microsoft:edge:81.0.416.64
-
cpe:2.3:a:microsoft:edge:81.0.416.68
-
cpe:2.3:a:microsoft:edge:81.0.416.72
-
cpe:2.3:a:microsoft:edge:81.0.416.77
-
cpe:2.3:a:microsoft:edge:83.0.478.37
-
cpe:2.3:a:microsoft:edge:83.0.478.44
-
cpe:2.3:a:microsoft:edge:83.0.478.45
-
cpe:2.3:a:microsoft:edge:83.0.478.50
-
cpe:2.3:a:microsoft:edge:83.0.478.54
-
cpe:2.3:a:microsoft:edge:83.0.478.56
-
cpe:2.3:a:microsoft:edge:83.0.478.58
-
cpe:2.3:a:microsoft:edge:83.0.478.61
-
cpe:2.3:a:microsoft:edge:83.0.478.64
-
cpe:2.3:a:microsoft:edge:84.0.522.40
-
cpe:2.3:a:microsoft:edge:84.0.522.44
-
cpe:2.3:a:microsoft:edge:84.0.522.48
-
cpe:2.3:a:microsoft:edge:84.0.522.49
-
cpe:2.3:a:microsoft:edge:84.0.522.50
-
cpe:2.3:a:microsoft:edge:84.0.522.52
-
cpe:2.3:a:microsoft:edge:84.0.522.58
-
cpe:2.3:a:microsoft:edge:84.0.522.59
-
cpe:2.3:a:microsoft:edge:84.0.522.61
-
cpe:2.3:a:microsoft:edge:84.0.522.63
-
cpe:2.3:a:microsoft:edge:85.0.564.41
-
cpe:2.3:a:microsoft:edge:85.0.564.44
-
cpe:2.3:a:microsoft:edge:85.0.564.51
-
cpe:2.3:a:microsoft:edge:85.0.564.63
-
cpe:2.3:a:microsoft:edge:85.0.564.68
-
cpe:2.3:a:microsoft:edge:85.0.564.70
-
cpe:2.3:a:microsoft:edge:86.0.622.38
-
cpe:2.3:a:microsoft:edge:86.0.622.43
-
cpe:2.3:a:microsoft:edge:86.0.622.48
-
cpe:2.3:a:microsoft:edge:86.0.622.51
-
cpe:2.3:a:microsoft:edge:86.0.622.56
-
cpe:2.3:a:microsoft:edge:86.0.622.58
-
cpe:2.3:a:microsoft:edge:86.0.622.61
-
cpe:2.3:a:microsoft:edge:86.0.622.63
-
cpe:2.3:a:microsoft:edge:86.0.622.68
-
cpe:2.3:a:microsoft:edge:86.0.622.69
-
cpe:2.3:a:microsoft:edge:87.0.664.41
-
cpe:2.3:a:microsoft:edge:87.0.664.47
-
cpe:2.3:a:microsoft:edge:88.0.705.50
-
cpe:2.3:a:microsoft:edge:88.0.705.62
-
cpe:2.3:a:microsoft:edge:88.0.705.63
-
cpe:2.3:a:microsoft:edge:88.0.705.74
-
cpe:2.3:a:microsoft:edge:93.0.961.38
-
cpe:2.3:a:microsoft:edge:93.0.961.44
-
cpe:2.3:a:microsoft:edge:97.0.4692.99
-
cpe:2.3:a:microsoft:internet_explorer:-
-
cpe:2.3:a:microsoft:internet_explorer:10
-
cpe:2.3:a:microsoft:internet_explorer:11
-
cpe:2.3:a:microsoft:internet_explorer:3.0
-
cpe:2.3:a:microsoft:internet_explorer:3.0.1
-
cpe:2.3:a:microsoft:internet_explorer:3.0.2
-
cpe:2.3:a:microsoft:internet_explorer:3.1
-
cpe:2.3:a:microsoft:internet_explorer:3.2
-
cpe:2.3:a:microsoft:internet_explorer:4.0
-
cpe:2.3:a:microsoft:internet_explorer:4.0.1
-
cpe:2.3:a:microsoft:internet_explorer:4.01
-
cpe:2.3:a:microsoft:internet_explorer:4.1
-
cpe:2.3:a:microsoft:internet_explorer:4.40.308
-
cpe:2.3:a:microsoft:internet_explorer:4.40.520
-
cpe:2.3:a:microsoft:internet_explorer:4.5
-
cpe:2.3:a:microsoft:internet_explorer:4.70.1155
-
cpe:2.3:a:microsoft:internet_explorer:4.70.1158
-
cpe:2.3:a:microsoft:internet_explorer:4.70.1215
-
cpe:2.3:a:microsoft:internet_explorer:4.70.1300
-
cpe:2.3:a:microsoft:internet_explorer:4.71.1008.3
-
cpe:2.3:a:microsoft:internet_explorer:4.71.1712.6
-
cpe:2.3:a:microsoft:internet_explorer:4.71.544
-
cpe:2.3:a:microsoft:internet_explorer:4.72.2106.8
-
cpe:2.3:a:microsoft:internet_explorer:4.72.3110.8
-
cpe:2.3:a:microsoft:internet_explorer:4.72.3612.1713
-
cpe:2.3:a:microsoft:internet_explorer:5
-
cpe:2.3:a:microsoft:internet_explorer:5.0
-
cpe:2.3:a:microsoft:internet_explorer:5.0.1
-
cpe:2.3:a:microsoft:internet_explorer:5.00.0518.10
-
cpe:2.3:a:microsoft:internet_explorer:5.00.0910.1309
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2014.0216
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2314.1003
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2516.1900
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2614.3500
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2919.3800
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2919.6307
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2919.800
-
cpe:2.3:a:microsoft:internet_explorer:5.00.2920.0000
-
cpe:2.3:a:microsoft:internet_explorer:5.00.3103.1000
-
cpe:2.3:a:microsoft:internet_explorer:5.00.3105.0106
-
cpe:2.3:a:microsoft:internet_explorer:5.00.3314.2101
-
cpe:2.3:a:microsoft:internet_explorer:5.00.3315.1000
-
cpe:2.3:a:microsoft:internet_explorer:5.00.3502.1000
-
cpe:2.3:a:microsoft:internet_explorer:5.00.3700.1000
-
cpe:2.3:a:microsoft:internet_explorer:5.01
-
cpe:2.3:a:microsoft:internet_explorer:5.1
-
cpe:2.3:a:microsoft:internet_explorer:5.2.3
-
cpe:2.3:a:microsoft:internet_explorer:5.5
-
cpe:2.3:a:microsoft:internet_explorer:5.50.3825.1300
-
cpe:2.3:a:microsoft:internet_explorer:5.50.4030.2400
-
cpe:2.3:a:microsoft:internet_explorer:5.50.4134.0100
-
cpe:2.3:a:microsoft:internet_explorer:5.50.4134.0600
-
cpe:2.3:a:microsoft:internet_explorer:5.50.4308.2900
-
cpe:2.3:a:microsoft:internet_explorer:5.50.4522.1800
-
cpe:2.3:a:microsoft:internet_explorer:5.50.4807.2300
-
cpe:2.3:a:microsoft:internet_explorer:6
-
cpe:2.3:a:microsoft:internet_explorer:6.0
-
cpe:2.3:a:microsoft:internet_explorer:6.0.2600
-
cpe:2.3:a:microsoft:internet_explorer:6.0.2800
-
cpe:2.3:a:microsoft:internet_explorer:6.0.2800.1106
-
cpe:2.3:a:microsoft:internet_explorer:6.0.2900
-
cpe:2.3:a:microsoft:internet_explorer:6.0.2900.2180
-
cpe:2.3:a:microsoft:internet_explorer:6.00.2462.0000
-
cpe:2.3:a:microsoft:internet_explorer:6.00.2479.0006
-
cpe:2.3:a:microsoft:internet_explorer:6.00.2600.0000
-
cpe:2.3:a:microsoft:internet_explorer:6.00.2800.1106
-
cpe:2.3:a:microsoft:internet_explorer:6.00.2900.2180
-
cpe:2.3:a:microsoft:internet_explorer:6.00.3663.0000
-
cpe:2.3:a:microsoft:internet_explorer:6.00.3718.0000
-
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.0000
-
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.1830
-
cpe:2.3:a:microsoft:internet_explorer:6.00.3790.3959
-
cpe:2.3:a:microsoft:internet_explorer:7
-
cpe:2.3:a:microsoft:internet_explorer:7.0
-
cpe:2.3:a:microsoft:internet_explorer:7.0.5730
-
cpe:2.3:a:microsoft:internet_explorer:7.0.5730.11
-
cpe:2.3:a:microsoft:internet_explorer:7.00.5730.1100
-
cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16386
-
cpe:2.3:a:microsoft:internet_explorer:7.00.6000.16441
-
cpe:2.3:a:microsoft:internet_explorer:8
-
cpe:2.3:a:microsoft:internet_explorer:8.0.6001
-
cpe:2.3:a:microsoft:internet_explorer:9
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1511
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_10:1709
-
cpe:2.3:o:microsoft:windows_10:1803
-
cpe:2.3:o:microsoft:windows_10:1809
-
cpe:2.3:o:microsoft:windows_10:1903
-
cpe:2.3:o:microsoft:windows_10:1909
-
cpe:2.3:o:microsoft:windows_10:2004
-
cpe:2.3:o:microsoft:windows_10:2019
-
cpe:2.3:o:microsoft:windows_10:20h2
-
cpe:2.3:o:microsoft:windows_10:21h1
-
cpe:2.3:o:microsoft:windows_10:21h2
-
cpe:2.3:o:microsoft:windows_10:22h2
-
cpe:2.3:o:microsoft:windows_7:-
-
cpe:2.3:o:microsoft:windows_8.1:-
-
cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20520
-
cpe:2.3:o:microsoft:windows_rt_8.1:-
-
cpe:2.3:o:microsoft:windows_rt_8.1:6.3.9600.20520
-
cpe:2.3:o:microsoft:windows_server_2008:-
-
cpe:2.3:o:microsoft:windows_server_2008:r2
-
cpe:2.3:o:microsoft:windows_server_2012:-
-
cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24116
-
cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24768
-
cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24919
-
cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24975
-
cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.25031
-
cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.25073
-
cpe:2.3:o:microsoft:windows_server_2012:r2
-
cpe:2.3:o:microsoft:windows_server_2016:-
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4467
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4583
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4651
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4704
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4886
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4946
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5066
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5125
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5192
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5246
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5291
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5356
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5427
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5501
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5582
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5648
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5717
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5850
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6085
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6167
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6351
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6452
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6614
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6796
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6897
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6981
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7070
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7159
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7259
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7336
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7428
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7515
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7606
-
cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.7876
-
cpe:2.3:o:microsoft:windows_server_2016:1709
-
cpe:2.3:o:microsoft:windows_server_2016:1803
-
cpe:2.3:o:microsoft:windows_server_2016:1903
-
cpe:2.3:o:microsoft:windows_server_2016:1909
-
cpe:2.3:o:microsoft:windows_server_2016:2004
-
cpe:2.3:o:microsoft:windows_server_2016:20h2