The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

TikTok users are deleting the app, with removals up 150% following U.S. joint venture

TikTok users have been deleting the app at a higher rate since the company announced that its U.S. operations would be housed ...

Fired Jets coach sends 2 word message, then deletes post

Former New York Jets senior assistant and passing game coordinator Scott Turner sent a two word message after being fired ...