Skip to content
The Nexus
SECURITYMay 6 · 18:38 UTCBLEEPING COMPUTERBill Toulas

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in vm2 allows attackers to escape the sandbox and execute arbitrary code on host systems. This bug affects the popular Node.js sandboxing library. The vulnerability can be used to compromise host systems.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this