Security Advisory

CVE-2021-23555

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-11 20:00:14

Last updated 2024-09-16 17:23:55

Assigner snyk

State PUBLISHED

Description

The package vm2 before 3.9.6 are vulnerable to Sandbox Bypass via direct access to host error objects generated by node internals during generation of a stacktraces, which can lead to execution of arbitrary code on the host machine.

← Browse all CVEs View on cve.org ↗