7.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2017-11909

GHSA ID

GHSA-9qpf-v72j-j9qh

EPSS Score

0.98752%

CWE

CWE-119

Published

5/14/2022

Updated

10/10/2023

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2017-11909

CVE-2017-11909: ChakraCore vulnerable to remote code execution

ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". BackwardPass::RemoveEmptyLoopAfterMemOp doesn't insert branches or make break control flow, potentially leading to remote code execution.

This CVE ID is unique from CVE-2017-11886, CVE-2017-11889, CVE-2017-11890, CVE-2017-11893, CVE-2017-11894, CVE-2017-11895, CVE-2017-11901, CVE-2017-11903, CVE-2017-11905, CVE-2017-11905, CVE-2017-11907, CVE-2017-11908, CVE-2017-11910, CVE-2017-11911, CVE-2017-11912, CVE-2017-11913, CVE-2017-11914, CVE-2017-11916, CVE-2017-11918, and CVE-2017-11930.

(GitHub Advisory)

7.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2017-11909

GHSA ID

GHSA-9qpf-v72j-j9qh

EPSS Score

0.98752%

CWE

CWE-119

Published

5/14/2022

Updated

10/10/2023

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
Microsoft.ChakraCore	nuget	< 1.7.5	1.7.5

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The GitHub patch explicitly modifies this function to add a branch instruction (Br) to maintain control flow coherence. The CVE description directly attributes the vulnerability to this function's failure to handle branches/control flow after loop removal. The commit message and exploit analysis confirm this was the root cause of memory corruption.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

***kr**or* *n* Win*ows ** ****, ****, ****, ****, *n* Win*ows S*rv*r **** *llows *n *tt**k*r to *x**ut* *r*itr*ry *o** in t** *ont*xt o* t** *urr*nt us*r, *u* to *ow t** s*riptin* *n*in* **n*l*s o*j**ts in m*mory, *k* "S*riptin* *n*in* M*mory *orrupt

Reasoning

T** *it*u* p*t** *xpli*itly mo*i*i*s t*is `*un*tion` to *** * *r*n** instru*tion (*r) to m*int*in *ontrol *low *o**r*n**. T** *V* **s*ription *ir**tly *ttri*ut*s t** vuln*r**ility to t*is `*un*tion`'s **ilur* to **n*l* *r*n***s/*ontrol *low **t*r loo

7.5

Basic Information

Concerned about an active attack path?

CVE-2017-11909: ChakraCore vulnerable to remote code execution

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI