Exploit available for critical bug in VM2 JavaScript sandbox library

April 7, 2023, 5:41 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Proof-of-concept exploit code has been released for a recently disclosed critical vulnerability in the popular VM2 library, a JavaScript sandbox that is used by multiple software to run code securely in a virtualized environment. [...]

bug code concept critical critical vulnerability environment exploit exploit code javascript library popular proof-of-concept run sandbox security software vm2 vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Five charged for cyber schemes to benefit North Korea's weapons program 13 hours ago | www.bleepingcomputer.com

charged cyber department generated +14

Norway recommends replacing SSL VPN to prevent breaches 14 hours ago | www.bleepingcomputer.com

alternatives breach breaches corporate +22

Microsoft shares temp fix for Outlook encrypted email reply issues 15 hours ago | www.bleepingcomputer.com

client customers desktop email +8

MediSecure e-script firm hit by ‘large-scale’ ransomware data breach 16 hours ago | www.bleepingcomputer.com

attack australia breach data +16

Russian hackers use new Lunar malware to breach a European govt's agencies 17 hours ago | www.bleepingcomputer.com

backdoors breach compromise government +8

Microsoft: Windows Server 2019 updates fail with 0x800f0982 errors 18 hours ago | www.bleepingcomputer.com

errors fail install issue +9

Kimsuky hackers deploy new Linux backdoor via trojanized installers 19 hours ago | www.bleepingcomputer.com

backdoor called campaigns cyberespionage +16

Kimsuky hackers deploy new Linux backdoor in attacks on South Korea 19 hours ago | www.bleepingcomputer.com

attacks backdoor called deploy +15

Google patches third exploited Chrome zero-day in a week 1 day, 10 hours ago | www.bleepingcomputer.com

address attacks chrome chrome security +14

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Information System Security Engineer 2

@ Wyetech | Annapolis Junction, Maryland

View on infosec-jobs.com

Staff Vulnerability/Configuration Management Security Engineer

@ ServiceNow | Hyderabad, India

View on infosec-jobs.com

Security Engineer

@ AXS | London, England, UK

View on infosec-jobs.com

all InfoSec news

Exploit available for critical bug in VM2 JavaScript sandbox library

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Information Security Engineers

Technology Security Analyst

Senior Cyber Security Analyst

Information System Security Engineer 2

Staff Vulnerability/Configuration Management Security Engineer

Security Engineer