2 matches found
GHSA-V37H-5MFM-C47C VM2 Has Sandbox Breakout Through Inspect Function
Summary VM2 suffers from a sandbox breakout vulnerability through the inspect function. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. Details The node inspect method allows to log details of objects. To get to the...
Mozilla: Potential use-after-free from compartment mismatch in SpiderMonkey
The Mozilla Foundation Security Advisory describes this flaw as: Cross-compartment wrappers wrapping a scripted proxy could have caused objects from other compartments to be stored in the main compartment resulting in a use-after-free after unwrapping the proxy...