Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

4 hours ago [email protected] (The Hacker News)
Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape


A critical security vulnerability has been disclosed in a Python-based sandbox called Terrarium that could result in arbitrary code execution.
The vulnerability, tracked as CVE-2026-5752, is rated 9.3 on the CVSS scoring system.
“Sandbox escape vulnerability in Terrarium allows arbitrary code execution with root privileges on a host process via JavaScript prototype chain traversal,” according to

The post “Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape” appeared first on The Hacker News

Source:The Hacker News – [email protected] (The Hacker News)

Tags: , , ,

More Stories

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

2 hours ago [email protected] (The Hacker News)

22 BRIDGE:BREAK Flaws Expose 20,000 Lantronix and Silex Serial-to-IP Converters

19 hours ago [email protected] (The Hacker News)

No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks

24 hours ago [email protected] (The Hacker News)

NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs

1 day ago [email protected] (The Hacker News)

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

1 day ago [email protected] (The Hacker News)

CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines

1 day ago [email protected] (The Hacker News)