Lucene search
+L

17 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:38 a.m.9 views

CVE-2023-26919

delight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal function can be used to invoke the exit and quit methods to exit the Java process...

7.2CVSS7AI score0.00608EPSS
Exploits1References1
NVD
NVD
added 2023/04/10 4:15 p.m.32 views

CVE-2023-26919

delight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal function can be used to invoke the exit and quit methods to exit the Java process...

7.2CVSS7AI score0.00608EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/04/10 12:0 a.m.38 views

CVE-2023-26919

delight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal function can be used to invoke the exit and quit methods to exit the Java process...

7.2AI score0.00608EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/04/10 12:0 a.m.12 views

CVE-2023-26919

delight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal function can be used to invoke the exit and quit methods to exit the Java process...

7AI score0.00608EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/04/10 12:0 a.m.9 views

PT-2023-20847 · Unknown · Delight Nashorn Sandbox

Name of the Vulnerable Software and Affected Versions: delight-nashorn-sandbox versions 0.2.4 through 0.2.5 Description: The issue allows for sandbox escape when allowExitFunctions is set to false. The loadWithNewGlobal function can be used to invoke the exit and quit methods, leading to the exit...

7.2CVSS7.3AI score0.00608EPSS
Exploits1References7
OSV
OSV
added 2023/04/10 12:0 a.m.21 views

CVE-2023-26919

delight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal function can be used to invoke the exit and quit methods to exit the Java process...

7.2CVSS7.2AI score0.00608EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.9 views

Delight Nashorn Sandbox 注入漏洞

Delight Nashorn Sandbox is a Java Delight open source sandbox for executing JavaScript in Java using Nashorn. A security vulnerability exists in Delight Nashorn Sandbox version 0.2.4, 0.2.5. An attacker exploiting this vulnerability can exit a Java process by calling the exit and quit methods usi...

7.2CVSS7AI score0.00608EPSS
Exploits1References2
CNVD
CNVD
added 2022/06/20 12:0 a.m.34 views

Delight Nashorn Sandbox Denial of Service Vulnerability

Delight Nashorn Sandbox is a sandbox for executing JavaScript in Java using Nashorn from Java Delight A denial of service vulnerability exists in Delight Nashorn Sandbox version 0.2.0, which stems from a weak expression that can be exploited and can be used by an attacker to The vulnerability lea...

5CVSS3.6AI score0.0097EPSS
Exploits1Affected Software1
vulnersOsv
vulnersOsv
added 2022/06/15 12:0 a.m.13 views

cn.easyutil:veteran-core (=1.0.1), cn.easyutil:veteran-web (=1.0.1) +14 more potentially affected by CVE-2021-40660 via org.javadelight:delight-nashorn-sandbox (>=0.1.16 <=0.2.5)

org.javadelight:delight-nashorn-sandbox MAVEN version =0.1.16, =1.2.22, =1.1-pre-alpha-19, =1.1-pre-alpha-21, =1.1-pre-alpha-21, =1.1-pre-alpha-21, =1.1-pre-alpha-21, =1.1-pre-alpha-21, =1.1-pre-alpha-21, =1.1-pre-alpha-21, =3.2.0, =3.2.0, =1.0.6, =0.1.0, =0.1.2 and more Source cves: CVE-2021-406...

7.5CVSS7.1AI score0.0097EPSS
Exploits1
OSV
OSV
added 2022/06/15 12:0 a.m.17 views

GHSA-38J3-6FM8-PFGC Regular expression denial of service in Delight Nashorn Sandbox

An issue was discovered in Delight Nashorn Sandbox. There is an ReDoS vulnerability that can be exploited to launching a denial of service DoS attack...

7.5CVSS7.3AI score0.0097EPSS
Exploits1References7
NVD
NVD
added 2022/06/14 2:15 p.m.23 views

CVE-2021-40660

An issue was discovered in Delight Nashorn Sandbox 0.2.0. There is an ReDoS vulnerability that can be exploited to launching a denial of service DoS attack...

7.5CVSS0.0097EPSS
Exploits1References1
OSV
OSV
added 2022/06/14 2:15 p.m.14 views

CVE-2021-40660

An issue was discovered in Delight Nashorn Sandbox 0.2.0. There is an ReDoS vulnerability that can be exploited to launching a denial of service DoS attack...

7.5CVSS7.4AI score
Exploits0References1
Prion
Prion
added 2022/06/14 2:15 p.m.16 views

Code injection

An issue was discovered in Delight Nashorn Sandbox 0.2.0. There is an ReDoS vulnerability that can be exploited to launching a denial of service DoS attack...

5CVSS7.3AI score0.0097EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/06/14 1:16 p.m.101 views

CVE-2021-40660

The CVE-2021-40660 issue affects Delight Nashorn Sandbox 0.2.0. Several connected sources (CNVD/CNNVD, OSV, Red Hat, GHSA) describe a ReDoS-type vulnerability in the sandbox’s regular-expression handling that can be exploited to trigger a denial-of-service condition. The root cause is identified ...

7.5CVSS7.3AI score0.0097EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/06/14 1:16 p.m.29 views

CVE-2021-40660

An issue was discovered in Delight Nashorn Sandbox 0.2.0. There is an ReDoS vulnerability that can be exploited to launching a denial of service DoS attack...

7.6AI score0.0097EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/06/14 12:0 a.m.7 views

Delight Nashorn Sandbox 安全漏洞

Delight Nashorn Sandbox is a sandbox for executing JavaScript in Java using Nashorn from Java Delight A denial of service vulnerability exists in Delight Nashorn Sandbox version 0.2.0, which stems from a weak expression that can be exploited and can be used by an attacker to The vulnerability lea...

7.5CVSS5.5AI score0.0097EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/06/14 12:0 a.m.5 views

PT-2022-11294 · Unknown · Delight Nashorn Sandbox

Name of the Vulnerable Software and Affected Versions: Delight Nashorn Sandbox version 0.2.0 Description: An issue was discovered in Delight Nashorn Sandbox, which has a ReDoS vulnerability that can be exploited to launch a denial of service DoS attack. Recommendations: For Delight Nashorn Sandbo...

7.5CVSS7.3AI score0.0097EPSS
Exploits1References10
Rows per page
Query Builder