CRITICALData BreachACTIVE

The Hacker News: Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

April 22, 2026

Incident Summary

Cohere’s Terrarium Python sandbox is described as having a critical vulnerability (CVE-2026-5752, CVSS 9.3). The issue reportedly enables arbitrary code execution and a container escape, allowing code to break out of the intended sandbox. This matters because sandbox and container boundaries are relied on to isolate untrusted code and protect underlying systems. Users and environments that run Terrarium for isolation could be impacted. Limited public details are available beyond the vulnerability identifier, severity score, and the described impact.

Incident Details

Type: Data Breach
Severity: CRITICAL
Status: ACTIVE
Date Occurred: April 22, 2026

Affected Industries

Engineering

External Sources

https://thehackernews.com/2026/04/cohere-ai-terrarium-sandbox-flaw.html

Back to Cohere risk profile