GHSA-mrgp-mrhc-5jrq

Опубликовано: 28 сент. 2022

Источник: github

Github: Прошло ревью

CVSS3: 10

Описание

vm2 vulnerable to Sandbox Escape resulting in Remote Code Execution on host

Impact

A threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox.

Patches

This vulnerability was patched in the release of version 3.9.11 of vm2

Workarounds

None.

References

Github Issue - https://github.com/patriksimek/vm2/issues/467 The file that was patched - https://github.com/patriksimek/vm2/blob/master/lib/setup-sandbox.js#L71 The commit with the patch - https://github.com/patriksimek/vm2/commit/d9a7f3cc995d3d861e1380eafb886cb3c5e2b873#diff-b1a515a627d820118e76d0e323fe2f0589ed50a1eacb490f6c3278fe3698f164

For more information

If you have any questions or comments about this advisory:

Open an issue in VM2

Ссылки

Пакеты

Наименование

vm2

npm

Затронутые версииВерсия исправления

< 3.9.11

3.9.11

EPSS

Процентиль: 99%

0.85411

Высокий

10 Critical

CVSS3

CVE ID

CVE-2022-36067

Дефекты

CWE-913

Связанные уязвимости

CVE-2022-36067

CVSS3: 10

redhat

больше 3 лет назад

vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. In versions prior to version 3.9.11, a threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox. This vulnerability was patched in the release of version 3.9.11 of vm2. There are no known workarounds.

CVE-2022-36067

CVSS3: 10

nvd

больше 3 лет назад

BDU:2022-05598

CVSS3: 10

fstec

больше 3 лет назад

Уязвимость библиотеки vm2 пакетного менеджера NPM, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 99%

0.85411

Высокий

10 Critical

CVSS3

CVE ID

CVE-2022-36067

Дефекты

CWE-913