ZDI-26-305: (0Day) OpenAI Codex Sandbox Escape Vulnerability

Kurzinfo

Veroeffentlicht: 2026-04-28 05:00 UTC Importiert: 2026-05-14 23:39 UTC Quelle-ID: zdi_pub uid_hash: 2ab003861e76f4b4e82468bafc145ed4b6a2fd68188aef10ed7ffdb8ad5c9f21

Zero Day Initiative (Published)

Inhalt

This vulnerability allows remote attackers to bypass the sandbox on affected installations of OpenAI Codex. User interaction is required to exploit this vulnerability in that the target must use Codex to process a repository containing malicious JavaScript. The ZDI has assigned a CVSS rating of 8.6.

No data

Quellen-Details

Bezeichnung	Name	Kategorie	Tags	Zielgruppe	Sprache	Feed-URL
Zero Day Initiative (Published)	zdi_pub	threat_intel		-	de	https://www.zerodayinitiative.com/rss/published/

Zurueck zur Eintrags-Liste