JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.
Infosecurity Magazine

Critical and High Severity n8n Sandbox Flaws Allow RCE

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...

New sandbox escape flaw exposes n8n instances to RCE attacks

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.
Infosecurity Magazine

Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core

A critical sandbox escape vulnerability in Grist-Core has been disclosed that allows remote code execution (RCE) through a ...

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

Google and Mozilla Patch 26 Security Flaws in Chrome 144, Firefox 147

Google Chrome 144 and Firefox 147 patch 26 security flaws, including high-severity bugs and sandbox escapes. Here’s what’s ...
Forbes

The Role Of Sandboxes In Enhancing Cybersecurity Measures

Forbes contributors publish independent expert analyses and insights. I write about contemporary cybersecurity and online privacy issues. A network-based sandbox is one of the most popular and mature ...
insideHPC

Dataguise Security Sandbox Joined with Hortonworks HDP 2.1 Sandbox

Dataguise®, the leading provider of Big Data security and protective intelligence solutions, today announced at Hadoop Summit the immediate availability of the Dataguise DgSecurity™ data protection ...