{"vulnerability": "cve-2018-8629", "sightings": [{"uuid": "1d9d18b6-320d-4b92-9b43-750e36c904e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2018-8629", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=347", "content": "", "creation_timestamp": "2018-12-12T04:00:00.000000Z"}, {"uuid": "2320a823-963f-4768-b755-ce6624245fb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-8629", "type": "seen", "source": "https://t.me/arpsyndicate/1677", "content": "#ExploitObserverAlert\n\nCVE-2018-8617\n\nDESCRIPTION: Exploit Observer has 4 entries related to CVE-2018-8617. A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka \"Chakra Scripting Engine Memory Corruption Vulnerability.\" This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8618, CVE-2018-8624, CVE-2018-8629.\n\nFIRST-EPSS: 0.966630000\nNVD-IS: 5.9\nNVD-ES: 1.6", "creation_timestamp": "2023-12-10T18:51:29.000000Z"}, {"uuid": "9d72052c-7265-4b4f-ab1c-373f67f7526a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-8629", "type": "published-proof-of-concept", "source": "https://t.me/canyoupwnme/4929", "content": "cve-2018-8629\nhttps://github.com/phoenhex/files/blob/master/pocs/cve-2018-8629-chakra.js", "creation_timestamp": "2019-01-02T13:04:37.000000Z"}, {"uuid": "4eb98582-3d33-41b7-9328-816763369851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-8629", "type": "published-proof-of-concept", "source": "https://t.me/SecLabNews/3956", "content": "\u041a\u043e\u043c\u0430\u043d\u0434\u0430 Phoenhex \u0440\u0430\u0437\u043c\u0435\u0441\u0442\u0438\u043b\u0430 \u043d\u0430 GitHib PoC-\u043a\u043e\u0434 \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 (CVE-2018-8629) \u0432 JavaScript-\u0434\u0432\u0438\u0436\u043a\u0435 Chakra, \u0432\u0445\u043e\u0434\u044f\u0449\u0435\u043c \u0432 \u0441\u043e\u0441\u0442\u0430\u0432 \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Microsoft Edge, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0442\u0435\u043a\u0443\u0449\u0435\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u043d\u0430 \u043d\u0435\u043f\u0440\u043e\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445.    \n\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Microsoft Edge", "creation_timestamp": "2018-12-28T09:43:42.000000Z"}, {"uuid": "afbbf9e0-9e38-4c65-80a0-4306a4080570", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-8629", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/138", "content": "#exploit\n1. CVE-2018-20323:\nMailCleaner Community Edition RCE\nhttps://pentest.blog/advisory-mailcleaner-community-edition-remote-code-execution\n\n2. CVE-2018-20305:\nD-Link DIR-816 A2 Stack Overflow\nhttps://github.com/RootSoull/Vuln-Poc/tree/master/D-Link/DIR-816\n\n3. CVE-2018-8629:\nOOB read leak by bkth from phoenhex for ChakraCore, this will crash reading oob in edge\nhttps://github.com/phoenhex/files/blob/master/pocs/cve-2018-8629-chakra.js", "creation_timestamp": "2023-09-05T20:13:03.000000Z"}]}