CVE-2026-34156
published 2026-03-31CVE-2026-34156: NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.28, NocoBase's Workflow…
PriorityP184critical9.9CVSS 3.1
AVNACLPRLUINSCCHIHAH
EXPLOIT
EPSS
36.50%
98.3th percentile
NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.28, NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist (controlled by WORKFLOW_SCRIPT_MODULES env var). However, the console object passed into the sandbox context exposes host-realm WritableWorkerStdio stream objects via console._stdout and console._stderr. An authenticated attacker can traverse the prototype chain to escape the sandbox and achieve Remote Code Execution as root. This issue has been patched in version 2.0.28.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nocobase | nocobase | < 2.0.28 | 2.0.28 |
| nocobase | plugin-workflow-javascript | >= 0 < 2.0.28 | 2.0.28 |
Detection & IOCsextracted from sources · hover to see the quote
commandconst Fn=console._stdout.constructor.constructor;const proc=Fn('return process')();const cp=proc.mainModule.require('child_process');↗
commandconst Fn=console._stdout.constructor.constructor;const proc=Fn('return process')();const cp=proc.mainModule.require('child_process');return cp.execSync('cat /etc/passwd').toString().trim();
sigma
id: CVE-2026-34156 info: name: NocoBase - VM Sandbox Escape to Remote Code Execution author: theamanrawat severity: critical
- →Detect exploitation attempts by monitoring POST requests to /api/flow_nodes:test containing the sandbox escape chain string 'console._stdout.constructor.constructor' in the request body.
- →Fingerprint vulnerable NocoBase instances using Shodan query 'http.title:"NocoBase"' or FOFA query 'body="__nocobase_public_path__"'.
- →Vulnerability check phase looks for 'WritableWorkerStdio' as the stream constructor name and 'function' as the fnConstructor type in the sandbox response — a positive match confirms the target is vulnerable. ↗
- →The exploit authenticates via POST /api/auth:signIn with JSON body {"account":"<user>","password":"<pass>"} and then uses the returned Bearer token to call /api/flow_nodes:test — correlate these two sequential API calls from the same source IP as a strong exploitation indicator. ↗
- →The Nuclei template confirms exploitation by matching 'root:.*:0:0:' regex in the HTTP response body from /api/flow_nodes:test, indicating successful /etc/passwd read via RCE.
- →The exploit payload uses the prototype chain traversal pattern: console._stdout.constructor.constructor → Function → process → mainModule.require('child_process'). Alert on this string pattern in any HTTP POST body.
- ·The sandbox escape is only possible when the host console object is passed into the Node.js vm sandbox context. The attack surface is controlled by the WORKFLOW_SCRIPT_MODULES environment variable (custom require allowlist), but the console object exposure is the root cause regardless of allowlist configuration. ↗
- ·Exploitation requires valid credentials for any user with workflow access — it is not an unauthenticated vulnerability. The /api/flow_nodes:test endpoint should be restricted to admin-only roles as a compensating control. ↗
- ·The reverse shell payload uses bash /dev/tcp and is specific to Debian-based container environments. Other OS/shell environments may require a different reverse shell payload. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
ghsa·2026-03-30
CVE-2026-34156 [CRITICAL] CWE-913 NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
`##` Summary
NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js `vm` sandbox with a custom `require` allowlist (controlled by `WORKFLOW_SCRIPT_MODULES` env var). However, the `console` object passed into the sandbox context exposes host-realm `WritableWorkerStdio` stream objects via `console._stdout` and `console._stderr`.
An authenticated attacker can traverse the prototype chain to escape the sandbox and achieve Remote Code Execution (RCE) as root.
## Exploit Chain
1. `console._stdout.constructor.constructor` → host-realm `Function` constructor
2. `Function('return process')()` → Node.js `process` object
3. `process.mainModule.require('chil
OSV
NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
osv·2026-03-30
CVE-2026-34156 [CRITICAL] NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node
`##` Summary
NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js `vm` sandbox with a custom `require` allowlist (controlled by `WORKFLOW_SCRIPT_MODULES` env var). However, the `console` object passed into the sandbox context exposes host-realm `WritableWorkerStdio` stream objects via `console._stdout` and `console._stderr`.
An authenticated attacker can traverse the prototype chain to escape the sandbox and achieve Remote Code Execution (RCE) as root.
## Exploit Chain
1. `console._stdout.constructor.constructor` → host-realm `Function` constructor
2. `Function('return process')()` → Node.js `process` object
3. `process.mainModule.require('chil
No detection rules found.
Exploit-DB
NocoBase 2.0.27 - VM Sandbox Escape
exploitdb·2026-05-07·CVSS 9.9
CVE-2026-34156 [CRITICAL] NocoBase 2.0.27 - VM Sandbox Escape
NocoBase 2.0.27 - VM Sandbox Escape
---
# Exploit Title: NocoBase 2.0.27 - VM Sandbox Escape
# Date: 2026-03-26
# Exploit Author: Onurcan Genç
# Vendor Homepage: https://www.nocobase.com/
# Software Link: https://github.com/nocobase/nocobase
# Version: -u -P --cmd "id"
# python3 exploit.py -t -u -P --dump
# python3 exploit.py -t -u -P -l -p
#
# Notes:
# - Requires valid credentials (any user with workflow access)
# - Vulnerability check runs automatically before exploitation
# - Default reverse shell uses bash /dev/tcp (Debian-based containers)
# - Start listener before running: nc -lvnp 4444
import argparse
import json
import requests
import sys
import urllib3
urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
# ─── Colors ────────────────────────────────────────────
Nuclei
NocoBase - VM Sandbox Escape to Remote Code Execution
nuclei·CVSS 9.9
CVE-2026-34156 [CRITICAL] NocoBase - VM Sandbox Escape to Remote Code Execution
NocoBase - VM Sandbox Escape to Remote Code Execution
NocoBase Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist controlled by WORKFLOW_SCRIPT_MODULES env var. The console object passed into the sandbox context exposes host-realm WritableWorkerStdio stream objects via console._stdout and console._stderr. An authenticated attacker can traverse the prototype chain (console._stdout.constructor.constructor to Function to process to child_process) to escape the sandbox and achieve Remote Code Execution as root.
Template:
id: CVE-2026-34156
info:
name: NocoBase - VM Sandbox Escape to Remote Code Execution
author: theamanrawat
severity: critical
description: |
NocoBase Workflow Script Node executes user-supplied JavaScript insid
Hackernews
⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More
blogs_hackernews·2026-04-06
⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More
This week had real hits. The key software got tampered with. Active bugs showed up in the tools people use every day. Some attacks didn’t even need much effort because the path was already there.
One weak spot now spreads wider than before. What starts small can reach a lot of systems fast. New bugs, faster use, less time to react.
That’s this week. Read through it.
## ⚡ Threat of the Week
Axios npm Package Compromised by N. Korean Hackers —Threat actors with ties to North Korea seized control of the npm account belonging to the lead m
Wiz
CVE-2026-34156 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.9
CVE-2026-34156 [CRITICAL] CVE-2026-34156 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34156 :
JavaScript vulnerability analysis and mitigation
NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.28, NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist (controlled by WORKFLOW_SCRIPT_MODULES env var). However, the console object passed into the sandbox context exposes host-realm WritableWorkerStdio stream objects via console._stdout and console._stderr. An authenticated attacker can traverse the prototype chain to escape the sandbox and achieve Remote Code Execution as root. This issue has been patched in version 2.0.28.
Source : NVD
## 9.9
Score
Published March 31, 2026
Severity CRITICAL
CNA Score 9.9
2026-03-31
Published