Back to directory

WRITEUP #2100

Enter "Sandbreak" - Vulnerability In vm2 Sandbox Module Enables Remote Code Execution (CVE-2022-36067)

RCESandbox bypass

by@OxeyeSecurity(Oxeye)

Program

vm2

Published

Oct 10, 2022

Added to HackDex

Oct 17, 2022

Read Full Writeuphttps://www.oxeye.io/blog/vm2-sandbreak-vulnerability-cve-2022-36067

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat