CRITICALCVE-2026-5752Published 2026-04-14Modified 2026-04-23CNA certcc

CVE-2026-5752: CVE-2026-5752

Sandbox Escape Vulnerability in Terrarium allows arbitrary code execution with root privileges on a host process via JavaScript prototype chain traversal.

CVSS v3.1: 9.3
Severity: CRITICAL
Fixed in: —
Affected Products: 1

Affected packages

Cohere / cohere-terrarium
1.0.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

References

kb.cert.org
github.com

Metrics