Remote Code Execution Discovered in Spotify’s Backstage

15 November 2022

A vulnerability in Spotify’s open-source, Cloud Native Computing Foundation (CNCF)-incubated project Backstage has been discovered that could lead to threat actors performing remote code execution (RCE). The findings come from the Oxeye research team, who have managed to exploit a virtual machine (VM) sandbox escape via a third-party library named vm2.

Read full article on Infosecurity

Date:

15 November 2022

Categorie(s):

NEWS

Tag(s):

Backstage, IT, News, Remote Code Execution

97% of security leaders have increased SaaS security budgets3 May 2024
New infosec products of the week: May 3, 20243 May 2024
Chinese government website security is often worryingly bad, say Chinese researchers3 May 2024
Security Excellence Awards – winners revealed!3 May 2024
McAfee Dominates AV-Comparatives PC Performance Test3 May 2024