{"id":"GHSA-c4pg-5ggh-vcpp","summary":"Duplicate Advisory: Sandbox escape in Artemis Java Test Sandbox","details":"## Duplicate Advisory\nThis advisory has been withdrawn because it is a duplicate of GHSA-98hq-4wmw-98w9. This link is maintained to preserve external references.\n\n## Original Description\nArtemis Java Test Sandbox versions before 1.11.2 are vulnerable to a sandbox escape when an attacker loads untrusted libraries using System.load or System.loadLibrary. An attacker can abuse this issue to execute arbitrary Java when a victim executes the supposedly sandboxed code.","modified":"2026-02-03T03:10:36.431694Z","published":"2024-01-19T21:30:36Z","withdrawn":"2026-01-22T20:30:53Z","database_specific":{"github_reviewed_at":"2024-01-22T21:25:12Z","github_reviewed":true,"cwe_ids":["CWE-284","CWE-94"],"severity":"HIGH","nvd_published_at":"2024-01-19T21:15:10Z"},"references":[{"type":"WEB","url":"https://github.com/ls1intum/Ares/security/advisories/GHSA-98hq-4wmw-98w9"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-23681"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-98hq-4wmw-98w9"},{"type":"PACKAGE","url":"https://github.com/ls1intum/Ares"},{"type":"WEB","url":"https://vulncheck.com/advisories/vc-advisory-GHSA-98hq-4wmw-98w9"}],"affected":[{"package":{"name":"de.tum.in.ase:artemis-java-test-sandbox","ecosystem":"Maven","purl":"pkg:maven/de.tum.in.ase/artemis-java-test-sandbox"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.11.2"}]}],"versions":["1.0.0","1.0.1","1.1.0","1.1.1","1.10.0","1.10.1","1.11.0","1.11.1","1.2.0","1.2.1","1.2.2","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.4.0","1.4.1","1.4.2","1.4.3","1.4.4","1.4.5","1.4.6","1.4.7","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.5.5","1.6.0","1.7.0","1.7.1","1.7.2","1.7.3","1.7.5","1.7.6","1.8.0","1.9.0","1.9.1","1.9.2"],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/01/GHSA-c4pg-5ggh-vcpp/GHSA-c4pg-5ggh-vcpp.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}]}