Vulnerability Details : CVE-2018-8373
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-8359, CVE-2018-8371, CVE-2018-8372, CVE-2018-8385, CVE-2018-8389, CVE-2018-8390.
Vulnerability category: Memory CorruptionExecute code
CVE-2018-8373 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Microsoft Scripting Engine Memory Corruption Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
Notes:
https://nvd.nist.gov/vuln/detail/CVE-2018-8373
Added on
2022-03-25
Action due date
2022-04-15
Exploit prediction scoring system (EPSS) score for CVE-2018-8373
89.63%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less