Tag

Uds

1 brief RSS

Node.js Permission Model Bypass via Unix Domain Sockets (CVE-2026-21711)

CVE-2026-21711 allows code running under the Node.js permission model without network access to create and expose local IPC endpoints via Unix Domain Sockets, bypassing intended network restrictions and enabling inter-process communication.

Node.js 25.x nodejs permission model uds unix domain socket ipc cve-2026-21711

2r 1t 1c 13m ago