Lucene search

GoogleOSV:CVE-2022-39266

HistorySep 29, 2022 - 6:15 p.m.

CVE-2022-39266

2022-09-2918:15:10

Google

osv.dev

cve-2022-39266

isolated-vm

nodejs

sandbox bypass

arbitrary code execution

cacheddataoptions

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.003

Percentile

69.5%

JSON

isolated-vm is a library for nodejs which gives the user access to v8’s Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API through CachedDataOptions, attackers can bypass the sandbox and run arbitrary code in the nodejs process. Version 4.3.7 changes the documentation to warn users that they should not accept cachedData payloads from a user.

References

github.com/laverdet/isolated-vm/commit/218e87a6d4e8cb818bea76d1ab30cd0be51920e8

github.com/laverdet/isolated-vm/commits/v4.3.7

github.com/laverdet/isolated-vm/issues/379

github.com/laverdet/isolated-vm/security/advisories/GHSA-2jjq-x548-rhpv

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.003

Percentile

69.5%

JSON

Related for OSV:CVE-2022-39266