CVE-2024-23683

CVE-2024-23683: Artemis Java Test Sandbox InvocationTargetException Subclass Escape

Published January 19, 2024
Last update November 28, 2025
View on NVD All CVEs

CVSS base score

What the vulnerability does

Description

Artemis Java Test Sandbox versions less than 1.7.6 are vulnerable to a sandbox escape when an attacker crafts a special subclass of InvocationTargetException. An attacker can abuse this issue to execute arbitrary Java when a victim executes the supposedly sandboxed code.

Key dates

Disclosure timeline

January 19, 2024 CVE published
November 28, 2025 Record updated