CVE-2019-0539

HIGH

ChakraCore - Remote Code Execution via Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2019-0539. PoCs published by Google Security Research, Fahad Aid Alharbi, 0x43434343.

AI-analyzed exploit summary This PoC demonstrates a type confusion vulnerability in JavaScript engines by exploiting the side effects of NewScObjectNoCtor and InitProto opcodes, leading to memory corruption. It overwrites property slots with an arbitrary value (0x1234) to trigger the issue.

Description

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0567, CVE-2019-0568.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Google Security Research · textdoswindows
https://www.exploit-db.com/exploits/46203

This PoC demonstrates a type confusion vulnerability in JavaScript engines by exploiting the side effects of NewScObjectNoCtor and InitProto opcodes, leading to memory corruption. It overwrites property slots with an arbitrary value (0x1234) to trigger the issue.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ChakraCore (Microsoft Edge)
No auth needed
Prerequisites: A vulnerable version of ChakraCore/JavaScript engine
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Google Security Research · javascriptdoswindows
https://www.exploit-db.com/exploits/46204

This PoC exploits a prototype pollution vulnerability in JavaScript engines by manipulating object prototypes through the InitClass instruction and SetIsPrototype method. It demonstrates arbitrary property manipulation, which can lead to type confusion or RCE in affected engines.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ChakraCore (Microsoft Edge)
No auth needed
Prerequisites: A vulnerable version of ChakraCore/JavaScript engine
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Fahad Aid Alharbi · htmldoswindows
https://www.exploit-db.com/exploits/46485

This exploit leverages a type confusion vulnerability in Chakra (CVE-2019-0539) to achieve arbitrary read access in memory. It manipulates object properties and ArrayBuffer handling to bypass security checks and leak memory addresses.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Microsoft Chakra JavaScript Engine (Chakra 1_11_4)
No auth needed
Prerequisites: Target must be running Windows 10 with Chakra 1_11_4 · Victim must visit a malicious webpage or execute the script
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 4 stars
by 0x43434343 · poc
https://github.com/0x43434343/CVE-2019-0539

This is a working exploit PoC for CVE-2019-0539, a type confusion vulnerability in ChakraCore. The exploit leverages JavaScript type confusion to achieve arbitrary read/write primitives and constructs a ROP chain for potential code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: ChakraCore (Microsoft Edge)
No auth needed
Prerequisites: Victim must visit a malicious webpage or execute the JavaScript in a vulnerable ChakraCore environment
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/46204/
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/46485/
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/106401
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/46203/

Scores

CVSS v3 7.5
EPSS 0.8290
EPSS Percentile 99.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (3)
microsoft/chakracore
microsoft/edge
nuget/Microsoft.ChakraCore 0 - 1.11.5NuGet
Published Jan 08, 2019
Tracked Since Feb 18, 2026