DNA View

Critical Severity Vulnerability

This vulnerability has been rated as Critical severity. Immediate action is recommended.

CVE-2026-5752

Critical

Low Medium High Critical

9.3

CVSS Score

Published: Apr 14, 2026

Last Modified: Apr 17, 2026

Vulnerability Description

Sandbox Escape Vulnerability in Terrarium allows arbitrary code execution with root privileges on a host process via JavaScript prototype chain traversal.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

References & Resources

https://github.com/cohere-ai/cohere-terrarium
cret@cert.org
https://kb.cert.org/vuls/id/414811
cret@cert.org

Severity Details

9.3

out of 10.0

Critical

Key Information

Published Date: April 14, 2026

External Resources

NIST NVD

National Vulnerability Database

MITRE CVE

Official CVE record

CVE Vulnerabilities

Posts & Pages