CVE-2026-47137 vm2: GHSA-8hg8-63c5-gwmx patch bypass: nesting:true without explicit require still allows full RCE

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, the fix for GHSA-8hg8-63c5-gwmx CVE-2023-37903 introduced a check in nodevm.js line 263 that blocks the combination nesting: true + require: false. However, the check uses strict equality options.require === false, which is...

GHSA-V6MX-MF47-R5WG vm2 has a Sandbox Escape issue

Summary By combining Buffer.call.call.lookupGetter, Buffer, "proto", Buffer.call.call.lookupSetter, Buffer, "proto", and Node.js's ERRINVALIDARGTYPE Error, the host's TypeError constructor can be obtained, which allows the escape from the sandbox. This allows attackers to run arbitrary code. PoC ...

GHSA-47X8-96VW-5WG6 vm2 Access to Host Object Enables Sandbox Escape

Summary It is possible to obtain the host Object, https://github.com/patriksimek/vm2/commit/ebcfe94ad2f864f0bc35e78cff1d921107cfd160 added some protections, but the implementation is incomplete. Details There are various ways to use the host Object, to escape the sandbox, one example would be usi...

GHSA-55HX-C926-FR95 VM2 Has a Sandbox Escape Issue via SuppressedError

In vm2 v3.10.4 on Node.js v24.13.0, SuppressedError allows attackers to escape the sandbox and run arbitrary code. PoC js const VM = require"vm2"; const vm = new VM; vm.run const ds = new DisposableStack; ds.defer = throw null; ; ds.defer = const e = Error; e.name = Symbol; e.stack; ; try...

The vulnerability of the NPM packet manager’s vm2 library arises from the lack of measures taken to eliminate special elements used in the operating system command. This vulnerability allows attackers to execute arbitrary code.

The vulnerability of the NPM packet manager’s vm2 library exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the NPM packet manager’s vm2 library, related to improper code generation management, allows a attacker to escape from a isolated programming environment and execute arbitrary code.

The vulnerability of the NPM package manager’s vm2 library is related to improper code generation during the processing of Promise objects with the @@species parameter. Exploiting this vulnerability allows a remote attacker to escape from a isolated programming environment and execute arbitrary...

The vulnerability of the handleException() function in the vm2 package manager’s library exists because measures to neutralize special elements are not taken. This allows a malicious user to exit from a isolated programming environment and execute arbitrary code.

The vulnerability of the handleException function in the vm2 package manager’s library exists because measures to neutralize special elements are not taken. Exploiting this vulnerability can allow a remote attacker to exit from a isolated programming environment and execute arbitrary code...

GHSA-CH3R-J5X3-6Q2M vm2 Sandbox Escape vulnerability

There exists a vulnerability in exception sanitization of vm2 for versions up to 3.9.16, allowing attackers to raise an unsanitized host exception inside handleException which can be used to escape the sandbox and run arbitrary code in host context. Impact A threat actor can bypass the sandbox...

The vulnerability of the NPM package manager vm2 library allows a hacker to execute arbitrary code.

The vulnerability of the NPM packet manager’s vm2 library is related to insufficient control over resources with dynamic management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...