29 Sep 2022
Vulnérabilité CVE-2022-39266 CVE Vulnerability
isolated-vm is a library for nodejs which gives the user access to v8's Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API through CachedDataOptions, attackers can bypass the sandbox and run arbitrary code in the nodejs process. As of time of publication, there are no known fixed versions or workarounds. (CVSS:0.0) (Last Update:2022-09-29)
Vulnerability Details : isolated-vm is a library for nodejs which gives the user access to v8's Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API through CachedDataOptions, attackers can bypass the sandbox and run arbitrary code in the nodejs process. As of time of publication, there are no known fixed versions or workarounds. Publish Date : 2022-09-29 Last Update Date : 2022-09-29 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2022-39266
- References For CVE-2022-39266
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2022-39266There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |