CVE-2020-0711: 
C# vulnerability analysis and mitigation

A remote code execution vulnerability identified as CVE-2020-0711 was discovered in the ChakraCore scripting engine. The vulnerability, also known as 'Scripting Engine Memory Corruption Vulnerability', affects how the engine handles objects in memory. This vulnerability was disclosed on February 11, 2020, and affects Microsoft Edge and various versions of Windows 10 (1803, 1809, 1903, 1909) and Windows Server 2019 (NVD).

The vulnerability is classified as an Out-of-bounds Write (CWE-787) issue. It received a CVSS v3.1 base score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating network accessibility with high attack complexity and requiring user interaction. The CVSS v2.0 score is 7.6 (HIGH) with the vector (AV:N/AC:H/Au:N/C:C/I:C/A:C) (NVD).

If successfully exploited, this vulnerability could allow an attacker to execute arbitrary code in the context of the current user. The high severity ratings across both CVSS v2.0 and v3.1 indicate potential complete compromise of system confidentiality, integrity, and availability (NVD).

Microsoft has released security updates to address this vulnerability. The fix is available for affected versions of Windows 10, Windows Server 2019, and Microsoft Edge. Additionally, ChakraCore versions prior to 1.11.16 are affected and should be updated (NVD).