As others have mentioned, this doesn't have a sandbox escape so you need to run with --no-sandbox for the exploit to work