CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-0639

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0609, CVE-2019-0680, CVE-2019-0769, CVE-2019-0770, CVE-2019-0771, CVE-2019-0773, CVE-2019-0783.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.109

EPSS Ranking 93.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.6

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0639
https://www.zerodayinitiative.com/advisories/ZDI-20-122/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0639
https://www.zerodayinitiative.com/advisories/ZDI-20-122/

Products affected by CVE-2019-0639

Microsoft » Internet Explorer » Version: 11

cpe:2.3:a:microsoft:internet_explorer:11
Microsoft » Windows 10 » Version: 1803

cpe:2.3:o:microsoft:windows_10:1803
Microsoft » Windows 10 » Version: 1809

cpe:2.3:o:microsoft:windows_10:1809
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0639

Products

Pricing

Contact Us