Known exploited
ChakraCore
CVE published 2022-03-03
CVE-2018-8298
CVE-2018-8298 is a ChakraCore scripting engine type confusion vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2022-03-03. The KEV listing makes this a patch-priority issue for any environment that uses ChakraCore or a product that embeds it. CISA’s required action is to apply updates per vendor instructions.