A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results