- EPSS 0.5%
- Veröffentlicht 25.02.2026 04:16:03
- Zuletzt bearbeitet 27.02.2026 18:27:17
Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to version 2.11.1, it is possible to escape the security boundraries set by `@enclave-vm/core`, which can be used to achieve remote code execution (RCE). The issu...
CVE-2026-25533
- EPSS 0.01%
- Veröffentlicht 06.02.2026 21:16:57
- Zuletzt bearbeitet 20.02.2026 21:06:58
Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to 2.10.1, the existing layers of security in enclave-vm are insufficient: The AST sanitization can be bypassed with dynamic property accesses, the hardening of t...
- EPSS 0.2%
- Veröffentlicht 13.01.2026 23:11:49
- Zuletzt bearbeitet 24.02.2026 19:23:05
Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to 2.7.0, there is a critical sandbox escape vulnerability in enclave-vm that allows untrusted, sandboxed JavaScript code to execute arbitrary code in the host No...