CWE-265
5 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-265page 1 of 1
- CVE-2020-1889CRITICALCVSS 10.0EG 10.02020-09-03
A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution vulnerability inside the sandboxed rende…
- CVE-2023-26122HIGHCVSS 8.8EG 10.02023-04-11
All versions of the package safe-eval are vulnerable to Sandbox Bypass due to improper input sanitization. The vulnerability is derived from prototype pollution exploitation. Exploiting this vulnerability might result in remote code execut…
- CVE-2023-5223MEDIUMCVSS 6.3EG 6.32023-09-27
A vulnerability, which was classified as critical, has been found in HimitZH HOJ up to 4.6-9a65e3f. This issue affects some unknown processing of the component Topic Handler. The manipulation leads to sandbox issue. The attack may be initi…
- CVE-2024-2007MEDIUMCVSS 5.3EG 5.32024-03-21
A vulnerability was found in OpenBMB XAgent 1.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Privileged Mode. The manipulation leads to sandbox issue. The attack needs to …
- CVE-2026-9368HIGHCVSS 7.3EG 7.32026-05-24
A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. This impacts the function execute_code of the file tools/code_execution_tool.py of the component Environment Variable Handler. Such manipulation leads to sandbox …
Map vulnerabilities like CWE-265 to your infrastructure
EchelonGraph correlates every CVE — across CWE-265 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →