Mandiant reported a security update for a High vulnerability in vm2. A threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox.

For a complete description of the vulnerabilities and affected systems go to Bug 2124794 (CVE-2022-36067) - CVE-2022-36067 vm2: Sandbox Escape in vm2.

IT Security

Read more about IT Security service offerings.