Popular server-side JavaScript security sandbox “vm2” patches remote execution hole

9 April 2023

We’ve written before, back in 2022, about a code execution hole in the widely-used JavaScript sandbox system . Now we’re writing to let you know about a similar-but-different hole in the same sandbox toolkit, and urging you to update if you use (or are reponsible for building) any products that depend on this package.

Read full article on Naked Security

Date:

9 April 2023

Categorie(s):

NEWS

Tag(s):

Good Security Is About Iteration, Not Perfection.28 April 2024
Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 202428 April 2024
Security budgets are growing, but so is vendor sprawl27 April 2024
The Top 5 Benefits Of Using Outsourcing Services27 April 2024
How To Repair PST Files In Under 5 Minutes Like A Pro27 April 2024