realms-shim is vulnerable to sandbox bypass. The vulnerability exists through the ‘realmEvaluate’ function in ‘realm.js’ as its does not properly validate the input, allowing an attacker bypass the sandbox by inject properties into existing construct prototypes.
CPE | Name | Operator | Version |
---|---|---|---|
realms-shim | le | 1.2.2 | |
realms-shim | le | 1.2.2 |