SecurityWeek

N8n Vulnerabilities Could Lead to Remote Code Execution

Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
SiliconANGLE

Together AI acquires CodeSandbox, adds code interpreter to its AI development platform

Together Computer Inc., which does business as Together AI, today said that it has acquired CodeSandbox B.V, a startup that builds isolated cloud-based code execution environments known as devboxes.
Redmond Magazine

Microsoft Pulls Plug on SharePoint Online Managed Code Sandbox

Microsoft announced last Friday that it is pulling support for a capability that lets organizations use a server-based sandbox to run managed code for SharePoint Online sites. The announcement ...