The Hacker News · Apr 22, 2026 7:16 AM

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

A critical security vulnerability has been disclosed in a Python-based sandbox called Terrarium that could result in arbitrary code execution.
The vulnerability, tracked as CVE-2026-5752, is rated 9.3 on the CVSS scoring system.
"Sandbox escape vulnerability in Terrarium allows arbitrary code execution with root privileges on a host process via JavaScript prototype chain traversal," according to

Read at The Hacker News

Was this helpful?

Scaling Codex to enterprises worldwide 2026-04-24
How to Ground a Korean AI Agent in Real Demographics with Synthetic Personas 2026-04-24
AI and the Future of Cybersecurity: Why Openness Matters 2026-04-24
SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation 2026-04-24

← Back to edition

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

Was this helpful?

Related