CVE-2017-11914: ChakraCore vulnerable to privilege escalation due to exposure from scriptFunction
7.5
CVSS Score
3.0
Basic Information
CVE ID
GHSA ID
EPSS Score
0.9872%
CWE
Published
5/14/2022
Updated
10/10/2023
KEV Status
No
Technology
C#
Technical Details
CVSS Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
Microsoft.ChakraCore | nuget | < 1.7.5 | 1.7.5 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from a single-line code change in the GetPropertyBuiltIns
method, where 'scriptFunction->GetProperty(scriptFunction, ...)' was replaced with 'scriptFunction->GetProperty(this, ...)'. The commit message explicitly states this fixes CVE-2017-11914
by ensuring the generator function (this) is used instead of the internal scriptFunction
. This exposure could allow attackers to access privileged objects, leading to memory corruption and privilege escalation.