TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

By rooter

A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the sandbox and execute arbitrary code on susceptible systems.
vm2 is an open-source library used to run untrusted JavaScript code inside a secure sandbox by intercepting and proxying JavaScript objects to prevent sandboxed code from accessing the host

Oh hi there đź‘‹
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there đź‘‹
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

Yet Another Way to Bypass Google Chrome’s Encryption Protection

rooter
Cyber Security

Instructure Breach Exposes Schools’ Vendor Dependence

rooter
Cyber Security

Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks

rooter

Leave a Reply

You Missed

Security

The invisible friction that slows down enterprise patching and remediation 

Security

The Shrinking Window Between Discovery and Exploitation

Cyber Security

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution