all InfoSec news
Host takeovers likely with critical Judge0 flaws
May 1, 2024, 1:51 p.m. | SC Staff
SC Magazine feed for Strategy www.scmagazine.com
SecurityWeek reports that online open-source service Judge0 used for arbitrary code execution within a sandbox has been impacted by three critical vulnerabilities, which could be leveraged to facilitate sandbox escapes, privilege escalation, and system takeovers.
arbitrary code arbitrary code execution cloud security code code execution critical critical vulnerabilities escalation flaws host judge0 network security privilege privilege escalation reports sandbox service system takeovers third-party-code vulnerabilities
More from www.scmagazine.com / SC Magazine feed for Strategy
Automated pentesting in the cloud
1 day, 3 hours ago |
www.scmagazine.com
Unforeseen outcomes of innovation
1 day, 9 hours ago |
www.scmagazine.com
Ten ways to minimize software supply chain risks
1 day, 15 hours ago |
www.scmagazine.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg
@ Hifield | Strasbourg, France
Lead Security Specialist
@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France