CVE-2018-8298
ChakraCore Scripting Engine Type Confusion Vulnerability
CVSS
—
No CVSS
EPSS
75.3%
p99
KEV
YES
Mar 3, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
75.3%EPSS · 30 days75.3%
2026-06-302026-07-16
Product
ChakraCore / ChakraCore scripting engine
Vulnerability
ChakraCore Scripting Engine Type Confusion Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 17, 2022
Known ransomware use
No
Summary description
The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-8298
No related CVEs by CWE or product.