CVE-2017-0152

EPSS 14.55% · P95 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-0152

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A remote code execution vulnerability exists in the way affected Microsoft scripting engine render when handling objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user, aka "Scripting Engine Memory Corruption Vulnerability."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft scripting引擎缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft scripting engine是美国微软（Microsoft）公司开发的一款用于Microsoft Internet Explorer（IE）和Edge浏览器中的JavaScript引擎。 Microsoft scripting引擎存在远程代码执行漏洞。远程攻击者可利用该漏洞在当前用户的上下文中执行任意代码，损坏内存。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Microsoft Corporation	Microsoft ChakraCore	Microsoft ChakraCore	-

II. Public POCs for CVE-2017-0152

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-0152

请登录查看更多情报信息。

Same Patch Batch · Microsoft Corporation · 2017-07-14 · 3 CVEs total

CVE-2017-0028		Microsoft scripting引擎安全漏洞
CVE-2017-0196		Microsoft scripting引擎信息泄露漏洞

IV. Related Vulnerabilities

Same product: Microsoft ChakraCore

Same vendor: Microsoft Corporation

V. Comments for CVE-2017-0152

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-0152

I. Basic Information for CVE-2017-0152

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-0152

III. Intelligence Information for CVE-2017-0152

Same Patch Batch · Microsoft Corporation · 2017-07-14 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-0152

Leave a comment