Lucene search
K

10 matches found

Vulnrichment
Vulnrichment
added 2026/05/13 5:29 p.m.11 views

CVE-2026-44001 vm2: Sandbox Escape via Promise Constructor Unhandled Rejection (Process Crash DoS)

vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, a sandbox escape vulnerability in vm2 v3.10.5 allows any sandboxed code to crash the host Node.js process via a single Promise constructor that triggers an unhandled rejection propagating to the host. The fix for CVE-2026-22709 v3.10....

8.6CVSS5.9AI score0.00448EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.12 views

vm2 安全漏洞

vm2 is a high-level virtual machine/sandbox developed by Czech developer Patrik Simek. It runs untrusted code using Node’s built-in modules listed in the allowlist. Versions of vm2 prior to 3.11.0 have security vulnerabilities; these vulnerabilities stem from sandbox escape exploits, allowing...

8.6CVSS5.9AI score0.00448EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/07 4:10 a.m.15 views

vm2 has a Sandbox Escape via Promise Constructor Unhandled Rejection (Process Crash DoS)

Summary A sandbox escape vulnerability in vm2 v3.10.5 allows any sandboxed code to crash the host Node.js process via a single Promise constructor that triggers an unhandled rejection propagating to the host. The fix for CVE-2026-22709 v3.10.2 only sanitized the onRejected callback in .then and...

10CVSS7.6AI score0.01222EPSS
Exploits2References5Affected Software1
Snyk
Snyk
added 2026/05/07 4:10 a.m.15 views

Uncaught Exception

Overview vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Affected versions of this package are vulnerable to Uncaught Exception through the Promise constructor when an unhandled rejection propagates from the sandboxed environment to the host process. An...

9.2CVSS5.9AI score0.00448EPSS
Exploits1References2
Snyk
Snyk
added 2025/10/16 4:42 p.m.4 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the jsstdpromiserejectioncheck function when iterating over the rejectedpromiselist. An attacker can achieve arbitrary code execution or cause a crash by supplying a malicious Error object with a custom property getter...

8.8CVSS6.5AI score0.00371EPSS
Exploits1References2
OSV
OSV
added 2025/10/16 4:15 p.m.2 views

UBUNTU-CVE-2025-62491

A Use-After-Free UAF vulnerability exists in the QuickJS engine's standard library when iterating over the global list of unhandled rejected promises ts-rejectedpromiselist. The function jsstdpromiserejectioncheck attempts to iterate over the rejectedpromiselist to report unhandled rejections usi...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References4
Veracode
Veracode
added 2024/10/28 8:20 a.m.11 views

Denial Of Service (DoS)

http-proxy-middleware is vulnerable to Denial of Service DoS. The vulnerability is due to an unhandled promise rejection error caused by micromatch, which can allow an attacker to crash the server by making requests to certain paths...

7.5CVSS7AI score0.01009EPSS
Exploits1References4Affected Software1
Snyk
Snyk
added 2024/10/18 4:6 a.m.6 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths. PoC 1 Run a server like this: js const express =...

8.7CVSS7AI score0.01009EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:20 p.m.4 views

Malicious code in hs-promise-rejection-tracking (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1b0af78070a71081b60bcff34762e511aa3de9b02147f99ab2b69e87591f500f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:20 p.m.5 views

MAL-2022-3688 Malicious code in hs-promise-rejection-tracking (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1b0af78070a71081b60bcff34762e511aa3de9b02147f99ab2b69e87591f500f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder