CVE-2026-34459 - Sandboxie-Plus sandbox escape via uninitialized memory leak and stack overflow in GetRawInputDeviceInfoSlave
CVE ID :CVE-2026-34459 Published : May 5, 2026, 7:27 p.m. | 1 hour ago Description :Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieSvc proxy service's GetRawInputDeviceInfoSlave handler contains two vulnerabilities that ca
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Android ADB Auth Bypass Proof-of-Concept: CVE-2026-0073
- [CYBER] New stealthy Quasar Linux malware targets software developers
- [CYBER] (LEAD) Coupang swings to net loss in Q1 amid fallout from data breach
- [CYBER] Question regarding VDP
- [CYBER] New CVEs in Ollama & DAEMON Tools; Webhooks Lack Signature Checks
- [CYBER] CVE-2026-40934 - jupyter-server authentication cookies remain valid after password reset due to static cookie secret