isolated-vm@1.7.0 vulnerabilities
Access to multiple isolates
-
latest version
4.7.2
-
latest non vulnerable version
-
first published
7 years ago
-
latest version published
3 months ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the isolated-vm package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
isolated-vm is an Access to multiple isolates Affected versions of this package are vulnerable to Remote Code Execution (RCE) when untrusted v8 cached data is passed to the API through Note: This issue has been addressed by improving the documentation. How to fix Remote Code Execution (RCE)? Upgrade |
<4.3.7
|
isolated-vm is an Access to multiple isolates Affected versions of this package are vulnerable to Privilege Escalation. Misuse of
Similar application-specific attacks could be possible by modifying the local prototype of other API objects. Access to How to fix Privilege Escalation? Upgrade |
<4.0.0
|