CVE-2026-27597

Published: Feb 25, 2026Modified: Feb 27, 2026

10.0

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 6.0

Source: security-advisories@github.com (Secondary)

Description

Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to version 2.11.1, it is possible to escape the security boundraries set by `@enclave-vm/core`, which can be used to achieve remote code execution (RCE). The issue has been fixed in version 2.11.1.

Affected (1)

Products: Agentfront: Enclave

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Agentfront Enclave	Before 2.11.1

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (2)

https://github.com/agentfront/enclave/commit/09afbebe4cb6d0586c1145aa71ffabd2103932db

Source: security-advisories@github.com

Patch

https://github.com/agentfront/enclave/security/advisories/GHSA-f229-3862-4942

Source: security-advisories@github.com

ExploitMitigationVendor Advisory

Timeline

No history available yet.