Miggo Logo
Miggo Vulnerability Database
CVE-2020-0711

CVE-2020-0711: ChakraCore RCE Vulnerability

7.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2020-0711
GHSA ID
GHSA-63fw-7jgf-5hwv
EPSS Score
0.89455%
CWE
CWE-119
Published
5/24/2022
Updated
7/13/2023
KEV Status
No
Technology
TechnologyC#

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
Microsoft.ChakraCorenuget< 1.11.161.11.16

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from improper scope management for functions declared in parameter lists. The commit diff shows critical modifications to: 1) Symbol binding logic (BindPidRefsInScope) to handle parameter-scope function declarations, 2) Function declaration flags (ParseFncDeclInternal) to track parameter-scope origins, and 3) Bytecode emission logic (StartEmitFunction) to handle merged scopes. These functions directly correlate with the CWE-787/CWE-119 descriptions of out-of-bounds writes and memory corruption through improper scope handling, as evidenced by the added test cases validating parameter-scope function behavior.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* r*mot* *o** *x**ution vuln*r**ility *xists in t** w*y t**t t** ***kr**or* s*riptin* *n*in* **n*l*s o*j**ts in m*mory, *k* 'S*riptin* *n*in* M*mory *orruption Vuln*r**ility'. T*is *V* I* is uniqu* *rom *V*-****-****, *V*-****-****, *V*-****-****, *V

Reasoning

T** vuln*r**ility st*ms *rom improp*r s*op* m*n***m*nt *or *un*tions ***l*r** in p*r*m*t*r lists. T** *ommit *i** s*ows *riti**l mo*i*i**tions to: *) Sym*ol *in*in* lo*i* (`*in*Pi*R**sInS*op*`) to **n*l* p*r*m*t*r-s*op* *un*tion ***l*r*tions, *) *un*