The vulnerability, tracked as CVE-2026-22709, carries a CVSS score of 9.8 out of 10.0 on the CVSS scoring system.
"In vm2 for version 3.10.0, Promise.prototype.then Promise.prototype.catch VDS VPS Cloud
http://dlvr.it/TQcVlM
Wednesday, 28 January 2026
Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution
The vulnerability, tracked as CVE-2026-22709, carries a CVSS score of 9.8 out of 10.0 on the CVSS scoring system.
"In vm2 for version 3.10.0, Promise.prototype.then Promise.prototype.catch VDS VPS Cloud
http://dlvr.it/TQcVlM
Subscribe to:
Post Comments (Atom)
ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories
iT4iNT SERVER The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady ...
-
iT4iNT SERVER A new agentic browser attack targeting Perplexity's Comet browser that's capable of turning a seemingly innocuous emai... -
iT4iNT SERVER A human rights lawyer from Pakistan's Balochistan province received a suspicious link on WhatsApp from an unknown number, ... -
iT4iNT SERVER The threat actor known as Silver Fox has been spotted orchestrating a false flag operation to mimic a Russian threat group in ...
No comments:
Post a Comment