The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
The Cincinnati Enquirer

Watch: Tee Higgins makes amazing, one-handed TD catch from Joe Burrow

Cincinnati Bengals receiver Tee Higgins made a remarkable, one-handed touchdown catch during the fourth quarter of the team's NFL Week 14 loss to the Buffalo Bills at Highmark Stadium. "Did he catch ...