BROWSER-IE Microsoft Edge type confusion memory corruption attempt
This event is generated when an attacker attempts to exploit CVE-2018-8391.
Attempted User Privilege Gain
CVSS base score 7.5
CVSS impact score 5.9
CVSS exploitability score 1.6
Confidentiality Impact HIGH
Integrity Impact HIGH
Availability Impact HIGH
CVE-2018-8391: A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8354, CVE-2018-8456, CVE-2018-8457, CVE-2018-8459.
Ease of attack
- Cisco's Talos Intelligence Group