CVE-2023-30547
Last modified
CVE-2023-30547 is a critical-severity vulnerability rated 10/10 on the CVSS scale. vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. There exists a vulnerability in exception sanitization of vm2 for versions up to 3.9.16, allowing attackers to raise an unsanitized host exception inside `handleException()` which can be used to escape the sandbox and run arbitrary code in host context. EPSS estimates a 72.09% chance of exploitation in the next 30 days.
Description
vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. There exists a vulnerability in exception sanitization of vm2 for versions up to 3.9.16, allowing attackers to raise an unsanitized host exception inside `handleException()` which can be used to escape the sandbox and run arbitrary code in host context. This vulnerability was patched in the release of version `3.9.17` of `vm2`. There are no known workarounds for this vulnerability. Users are advised to upgrade.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Vm2 Project | Vm2 | <= 3.9.16 |
References
- https://gist.github.com/leesh3288/381b230b04936dd4d74aaf90cc8bb244Exploit, Third Party Advisory
- https://github.com/patriksimek/vm2/security/advisories/GHSA-ch3r-j5x3-6q2mExploit, Vendor Advisory
- https://gist.github.com/leesh3288/381b230b04936dd4d74aaf90cc8bb244Exploit, Third Party Advisory
- https://github.com/patriksimek/vm2/security/advisories/GHSA-ch3r-j5x3-6q2mExploit, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-30547?
How severe is CVE-2023-30547?
How do I fix CVE-2023-30547?
Are you affected by CVE-2023-30547?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST