The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...

Some sandbox products only provide protection from silent downloads, which can be furnished by a fully patched system without additional software in most cases. Others provide protection no matter ...

A remote code execution (RCE) vulnerability in a widely used JavaScript sandbox has earned a top rating of 10 on the CVSS vulnerability risk scale; it allows threat actors to execute a sandbox escape ...

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.

Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.

Adobe will employ a new sandboxing technology in the next version of its oft-targeted Reader in the name of hardening security. However, the effort won’t make Reader more secure in the long run — and ...

MENLO PARK, Calif.--(BUSINESS WIRE)--Bedrock Security, the frictionless data security company, today announced it has been named one of 10 finalists in the prestigious RSA Conference™ 2024 Innovation ...

Web3 gaming platform The Sandbox is hiring leading blockchain infrastructure security provider OpenZeppelin to prevent attacks within the metaverse, the companies said Thursday. OpenZeppelin, the firm ...

A security researcher has found a gap in the way Adobe Systems has fortified its Flash Player for better security, which could result in data being stolen and sent to a remote server. Billy Rios, a ...