| ▲ | simonw 3 hours ago | |
You mean this one? https://theori.io/blog/a-deep-dive-into-v8-sandbox-escape-te... I dunno, one sandbox escape in nine years is a pretty solid track record IMO. Any reason WASM is more dangerous than regular JavaScript? | ||
| ▲ | rvz an hour ago | parent [-] | |
No. This one. [0]. Even before that, there are several other sandbox escapes that predated the one you posted. [1] [2] and this one [3] can be used to trivially escape its sandbox with either of these vulnerabilities. So it is not the magical silver bullet one may easily think it is. [0] https://nvd.nist.gov/vuln/detail/CVE-2026-11645 [1] https://blog.ret2.io/2021/06/02/pwn2own-2021-jsc-exploit/ | ||