Name of the Vulnerable Software and Affected Versions sandbox versions (affected versions not specified)

Description The issue is related to insufficient input sanitization, allowing for a Sandbox Escape that can lead to Remote Code Execution. This can be achieved by exploiting constructors. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations Consider using an alternative module until a fix is made available. As a temporary workaround, consider restricting the use of the sandbox module to minimize the risk of exploitation. Avoid using the constructor variable in the affected code until the issue is resolved.