CVE-2026-47213: CWE-404: Improper Resource Shutdown or Release in boxlite-ai boxlite
Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untrusted code. In versions 0.8.2 and prior, Boxlite allows users to configure a timeout for services running inside the virtual machine. When the timeout is triggered, Boxlite sends a signal to kill the process. However, instead of using the uncatchable SIGKILL signal, Boxlite uses the catchable SIGALRM signal. Malicious code running inside the sandbox can exploit this vulnerability to continue running after the timeout is triggered, leading to resource exhaustion within the virtual machine and affecting the availability of the Boxlite service. This issue has been patched via commit 28159fc.
AI Analysis
Technical Summary
CVE-2026-47213 is an improper resource shutdown vulnerability (CWE-404) in boxlite-ai's Boxlite sandbox service. In versions 0.8.2 and prior, Boxlite allows users to set a timeout for services running inside lightweight virtual machines. When the timeout triggers, Boxlite sends SIGALRM, a catchable signal, instead of SIGKILL, which cannot be caught or ignored. This allows malicious processes to continue running after the timeout, leading to resource exhaustion within the virtual machine and degrading the availability of the Boxlite service. The vulnerability has been fixed in a commit identified as 28159fc.
Potential Impact
Exploitation of this vulnerability enables malicious code running inside the sandbox to bypass the intended timeout termination, continuing execution and consuming resources. This can lead to resource exhaustion within the virtual machine, negatively affecting the availability and stability of the Boxlite service. There is no impact on confidentiality or integrity reported.
Mitigation Recommendations
A patch addressing this vulnerability has been applied in commit 28159fc. Users should upgrade to a version of Boxlite that includes this fix to ensure proper termination of timed-out processes using the uncatchable SIGKILL signal. Since the vulnerability is fixed in a later version, upgrading is the recommended mitigation.
CVE-2026-47213: CWE-404: Improper Resource Shutdown or Release in boxlite-ai boxlite
Description
Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untrusted code. In versions 0.8.2 and prior, Boxlite allows users to configure a timeout for services running inside the virtual machine. When the timeout is triggered, Boxlite sends a signal to kill the process. However, instead of using the uncatchable SIGKILL signal, Boxlite uses the catchable SIGALRM signal. Malicious code running inside the sandbox can exploit this vulnerability to continue running after the timeout is triggered, leading to resource exhaustion within the virtual machine and affecting the availability of the Boxlite service. This issue has been patched via commit 28159fc.
CVSS v3.1
Score 6.5medium
Affected software
pkg:github/boxlite-ai/boxliteRun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-47213 is an improper resource shutdown vulnerability (CWE-404) in boxlite-ai's Boxlite sandbox service. In versions 0.8.2 and prior, Boxlite allows users to set a timeout for services running inside lightweight virtual machines. When the timeout triggers, Boxlite sends SIGALRM, a catchable signal, instead of SIGKILL, which cannot be caught or ignored. This allows malicious processes to continue running after the timeout, leading to resource exhaustion within the virtual machine and degrading the availability of the Boxlite service. The vulnerability has been fixed in a commit identified as 28159fc.
Potential Impact
Exploitation of this vulnerability enables malicious code running inside the sandbox to bypass the intended timeout termination, continuing execution and consuming resources. This can lead to resource exhaustion within the virtual machine, negatively affecting the availability and stability of the Boxlite service. There is no impact on confidentiality or integrity reported.
Mitigation Recommendations
A patch addressing this vulnerability has been applied in commit 28159fc. Users should upgrade to a version of Boxlite that includes this fix to ensure proper termination of timed-out processes using the uncatchable SIGKILL signal. Since the vulnerability is fixed in a later version, upgrading is the recommended mitigation.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-18T22:25:21.258Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a29e5e331875706499a3994
Added to database: 6/10/2026, 10:32:03 PM
Last enriched: 6/10/2026, 10:46:24 PM
Last updated: 6/10/2026, 11:35:35 PM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.