all InfoSec news
Critical Flaws in vm2 JavaScript Library Can Lead to Remote Code Execution
April 19, 2023, 4:53 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
Both the flaws – CVE-2023-29199 and CVE-2023-30547 – are rated 9.8 out of 10 on the CVSS scoring system and have been addressed in versions 3.9.16 and 3.9.17, respectively.
Successful exploitation of the bugs, which allow
address bugs code code execution critical cve cvss exploitation exploited flaws javascript library patches remote code remote code execution sandbox system vm2
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Information System Security Engineer 2
@ Wyetech | Annapolis Junction, Maryland
Staff Vulnerability/Configuration Management Security Engineer
@ ServiceNow | Hyderabad, India
Security Engineer
@ AXS | London, England, UK