The threat situation in the software supply chain is intensifying. Securing it belongs at the top of the CISO’s agenda.
A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results