Javadelight Nashorn Sandbox — known CVE vulnerabilities
Every CVE whose affected-product data names Javadelight Nashorn Sandbox, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-40660 — CVSS 7.5 (high): An issue was discovered in Delight Nashorn Sandbox 0.2.0. There is an ReDoS vulnerability that can be exploited to launching a denial of…
CVE-2023-26919 — CVSS 7.2 (high): delight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal…