Vulners
Lucene search
CVE-2026-47135 vm2: Sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | CVE-2026-47135 | 12 Jun 202614:14 | β | cve |
 | EUVD-2026-36442 | 12 Jun 202614:14 | β | euvd |
 | vm2 has a sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks | 29 May 202617:44 | β | github |
 | CVE-2026-47135 | 12 Jun 202615:16 | β | nvd |
 | GHSA-M5Q2-4FM3-VFQP vm2 has a sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks | 29 May 202617:44 | β | osv |
| MINI-9Q29-2736-7QP5 | 2 Jun 202621:51 | β | osv |
| ROOT-APP-NPM-CVE-2026-47135 CVE-2026-47135 in @rootio/vm2 - Patched by Root | 12 Jun 202613:27 | β | osv |
 | PT-2026-42146 | 20 May 202600:00 | β | ptsecurity |
 | Incomplete List of Disallowed Inputs | 29 May 202617:44 | β | snyk |
| Incomplete List of Disallowed Inputs | 29 May 202617:44 | β | snyk |
10
[
{
"vendor": "patriksimek",
"product": "vm2",
"versions": [
{
"version": "< 3.11.4",
"status": "affected"
}
]
}
]Data
Build on a solid foundation withΒ Vulners data
WeΒ provide theΒ essential building blocks forΒ cybersecurity solutions withΒ comprehensive, structured, andΒ constantly updated vulnerability andΒ exploits data
Api
Power your application withΒ Vulners API
The Vulners REST API offers reliable, high-performance access toΒ vulnerabilityΒ intelligence, withΒ 99.9%Β SLAΒ uptime andΒ CDN-backed data delivery forΒ seamlessΒ global access
App
Assess and manage vulnerabilities withΒ VulnersΒ tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
12 Jun 2026 14:14Current
CVSS 3.18.7