The package vm2 before 3.9.6 are vulnerable to Sandbox Bypass via direct access to host error objects generated by node internals during generation of a stacktraces, which can lead to execution of arbitrary code on the host machine.
Metrics
Affected Vendors & Products
References
History
Sun, 08 Sep 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat acm |
|
CPEs | cpe:/a:redhat:acm:2.4::el8 | |
Vendors & Products |
Redhat
Redhat acm |
Mon, 19 Aug 2024 22:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | ||
Vendors & Products |
Redhat
Redhat acm |
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2022-02-11T20:00:14.189158Z
Updated: 2024-09-16T17:23:55.888Z
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23555
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-02-11T20:15:07.440
Modified: 2024-11-21T05:51:49.403
Link: CVE-2021-23555
Redhat