@enclave-vm/core Remote Code Execution Vulnerability

A remote code execution vulnerability has been identified in the Enclave JavaScript sandbox, specifically in versions of @enclave-vm/core prior to 2.11.1. This vulnerability allows untrusted code to escape the sandbox's security boundaries, accessing restricted properties and executing arbitrary commands on the host system. The issue arises from inadequate isolation of intrinsic objects and console outputs, as well as unvalidated access to constructors and prototypes, which can be exploited to retrieve the native Object constructor and access the host environment.

Impact

Exploitation of this vulnerability allows for remote code execution on the host system where the Enclave instance is running.

Reproduction

The vulnerability can be reproduced by creating an Enclave instance with the default memory limit. Within the Enclave, untrusted code can be executed that accesses the native Object constructor through prototype manipulation. Once the Object constructor is obtained, property descriptors can be retrieved, allowing access to host objects and execution of commands on the host system.

Remediation

Users are advised to upgrade to Enclave version 2.11.1 or later, where this vulnerability has been fixed.