Skip to main content
RuntimeRebel
← All Articles

Tag

#javascript-security

3 articles

Advertisement

vm2 Node.js Library RCE: Multiple Sandbox Escape Vulnerabilities
CRITICAL
Vulnerabilities

vm2 Node.js Library RCE: Multiple Sandbox Escape Vulnerabilities

Discovery of a dozen critical vulnerabilities in the vm2 Node.js library allows for sandbox escape and RCE. Learn how to mitigate these security risks now.

Runtime Rebel Intel
4 min read·May 7, 2026
VU
CRITICAL
Vulnerabilities

protobuf.js RCE via CVE-2023-32731 — Mitigation Guide

Technical breakdown of CVE-2023-32731, a critical prototype pollution vulnerability in protobuf.js that enables remote code execution in JavaScript environments.

Runtime Rebel Intel
4 min read·Apr 18, 2026
Axios Supply Chain Attack: RAT Found in Versions 1.14.1 and 0.30.4
CRITICAL
Supply Chain

Axios Supply Chain Attack: RAT Found in Versions 1.14.1 and 0.30.4

Malicious Axios versions 1.14.1 and 0.30.4 inject a cross-platform RAT via a fake dependency. Identify and remediate this npm supply chain threat now.

Runtime Rebel Intel
3 min read·Mar 31, 2026