📰 Researchers Detail Critical RCE Flaw Reported in Popular vm2 JavaScript Sandbox
Nachrichtenbereich: 📰 IT Security Nachrichten
🔗 Quelle: thehackernews.com
A now-patched security flaw in the vm2 JavaScript sandbox module could be abused by a remote adversary to break out of security barriers and perform arbitrary operations on the underlying machine. "A threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox," GitHub said in an advisory published on September 28, 2022. The ...
⚠️ vm2 3.9.19 Sandbox Escape
📈 34.39 Punkte
⚠️ PoC
⚠️ [local] vm2 - sandbox escape
📈 34.39 Punkte
⚠️ PoC