Multiple critical security flaws have been disclosed in the Judge0 open-source online code execution system that could be exploited to obtain code execution on the target system.
The three flaws, all critical in nature, allow an “adversary with sufficient access to perform a sandbox escape and obtain root permissions on the host machine,” Australian
Source link
Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover
Related Posts
North Korean APT Bypasses DMARC for Cyber Espionage
COMMENTARYWith heightened geopolitical tensions, a surge in cyberattacks on US and allied organizations by a North Korean cyber-espionage group is hardly unexpected. What is disquieting, however, is that an advanced…
Mistrial declared for ex-AT&T exec accused of bribing government official
A mistrial was declared today in the trial of former AT&T Illinois President Paul La Schiazza, who was accused of bribing a powerful state lawmaker’s ally in order to obtain…