The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Inc

ChatGPT Health Promises Personalized Wellness Advice—but a Medical Expert Says There’s a Catch

On January 7, OpenAI announced the launch of ChatGPT Health, a new tool developed in collaboration with physicians to help people better understand and manage their health and well-being. According to ...
CNN

Tyrese Haliburton promises to catch up on his texts in 2026

Twenty-five games into the 2024-25 season, the Indiana Pacers, returning Eastern Conference Finalists, had a 10–15 record and a slew of injuries. Star Tyrese Haliburton took the brunt of the blame — ...