Lucene search
K

27 matches found

CVE
CVE
added 2023/04/14 6:37 p.m.472 views

CVE-2023-29199

The CVE-2023-29199 issue affects the vm2 Node.js module, specifically its source code transformer’s exception sanitization. Versions up to 3.9.15 are vulnerable to a sandbox bypass in handleException(), enabling leakage of unsanitized host exceptions and potential remote code execution in the hos...

10CVSS9.8AI score0.03852EPSS
CVE
CVE
added 2022/09/06 12:0 a.m.313 views

CVE-2022-36067

CVE-2022-36067 (vm2) is a Node.js sandbox vulnerability in the vm2 library. In versions prior to 3.9.11, the sandbox protections can be bypassed, allowing a threat actor to gain remote code execution on the host running the sandbox. The issue has been fixed in vm2 3.9.11. The Initial Description ...

10CVSS10AI score0.47868EPSS
CVE
CVE
added 2023/04/06 7:18 p.m.217 views

CVE-2023-29017

VM2 (Node sandbox) contains a RCE flaw prior to 3.9.15 where host objects passed to Error.prepareStackTrace during unhandled async errors could bypass sandbox protections. Patched in vm2 release 3.9.15. Affected: vm2 versions before 3.9.15; remediation is to upgrade to 3.9.15 or later. The descri...

10CVSS10AI score0.63186EPSS
CVE
CVE
added 2023/05/15 7:46 p.m.184 views

CVE-2023-32314

VM2 security summary (CVE family) VM2’s sandbox has multiple confirmed security issues affecting versions up to 3.9.19, including sandbox escapes and remote code execution. Notable entries in connected docs describe: (1) escape via host objects created under Proxy in vm2

10CVSS9.8AI score0.05642EPSS
CVE
CVE
added 2022/02/11 8:0 p.m.132 views

CVE-2021-23555

The CVE-2021-23555 entry concerns the Node.js vm2 sandbox module (pre-3.9.6) allowing a sandbox bypass via direct access to host error objects generated during stack-trace creation, enabling possible remote arbitrary code execution. Concrete details across connected docs indicate this affects vm2...

10CVSS9.6AI score0.02876EPSS
CVE
CVE
added 2022/12/21 11:14 p.m.108 views

CVE-2022-25893

CVE-2022-25893 affects the vm2 Node.js module (pre-3.9.10) and is caused by a prototype pollution flaw in WeakMap.prototype.set, enabling an attacker to access host objects and potentially compromise the sandbox, leading to arbitrary code execution. Reported impact in the sources: remote code exe...

9.8CVSS9.7AI score0.01425EPSS
CVE
CVE
added 2023/05/15 7:45 p.m.89 views

CVE-2023-32313

Affected software: vm2 (Node.js sandbox). The connected documents confirm CVE-2023-32313 affects vm2 versions 3.9.17 and earlier, where an attacker could obtain a read-write reference to Node’s inspect method and modify options for console.log, enabling potential tampering with console output. Th...

5.3CVSS7.2AI score0.0079EPSS
CVE
CVE
added 2021/10/18 4:40 p.m.68 views

CVE-2021-23449

The CVE-2021-23449 entry concerns the Node.js vm2 package (pre-3.9.4). A Prototype Pollution flaw allows an attacker to modify Object.prototype via proto /constructor payloads, which can lead to sandbox escape and execution of arbitrary code on the host. Impact is described as remote code executi...

10CVSS9.6AI score0.03476EPSS
CVE
CVE
added 2022/07/13 8:20 a.m.57 views

CVE-2019-10761

CVE-2019-10761 affects vm2 before 3.6.11. A RangeError can be triggered from the host by infinite recursion within the sandbox, allowing the attacker to reference the host’s mainModule and spawn a child_process to execute arbitrary code. Documented exploits/pocs demonstrate sandbox escape and rem...

8.3CVSS8.5AI score0.00974EPSS
CVE
CVE
added 2026/05/13 5:29 p.m.44 views

CVE-2026-44002

CVE-2026-44002 affects the vm2 sandbox for Node.js. Before 3.11.0, the CallSite wrapper blocks getThis() and getFunction() but allows getFileName() to reveal unsanitized host absolute paths. This enables sandboxed code to leak the host directory structure, library paths, and framework versions (v...

5.8CVSS5.9AI score0.00241EPSS
CVE
CVE
added 2026/01/26 9:32 p.m.41 views

CVE-2026-22709

CVE-2026-22709 affects the vm2 Node.js sandbox module prior to 3.10.2. The vulnerability arises because Promise.prototype.then/catch sanitization is incomplete: the globalPromise path isn’t sanitized in lib/setup-sandbox.js, allowing an attacker to escape the sandbox and execute arbitrary code. U...

10CVSS5.9AI score0.01222EPSS
CVE
CVE
added 2026/05/13 5:38 p.m.41 views

CVE-2026-45411

vm2 is a Node.js sandbox; prior to 3.11.3, an async generator yield* can cause host exceptions to escape the VM when the generator is closed with return, with exceptions from then being routed to the yield* iterator as the next value, enabling arbitrary host commands. This is fixed in 3.11.3. The...

9.8CVSS6.1AI score0.00568EPSS
CVE
CVE
added 2026/05/04 4:33 p.m.36 views

CVE-2026-24781

vm2 is an open source Node.js sandbox; prior to version 3.11.0 it suffers a sandbox breakout through the inspect function that allows code to escape the VM2 sandbox and run arbitrary host commands. The issue has been fixed in version 3.11.0. Affected: vm2 (Node.js VM2 sandbox); root cause: sandbo...

9.8CVSS6.1AI score0.01155EPSS
CVE
CVE
added 2026/05/13 5:29 p.m.35 views

CVE-2026-44001

Summary : CVE-2026-44001 affects vm2 before version 3.11.0, where a sandbox escape allows sandboxed code to crash the host Node.js process via an unhandled rejection from a Promise executor. The issue stems from the executor path not being sanitized, even though the earlier CVE-2026-22709 fix add...

8.6CVSS5.9AI score0.00448EPSS
CVE
CVE
added 2026/05/13 5:33 p.m.33 views

CVE-2026-44007

vm2 contains a vulnerability where creating a NodeVM with nesting: true allows sandbox code to bypass outer VM restrictions (e.g., require: false) and construct an inner NodeVM with unrestricted require settings to execute host commands. Affected: vm2 versions up to 3.11.0 (and prior to 3.11.1). ...

9.9CVSS6.2AI score0.009EPSS
CVE
CVE
added 2026/05/13 5:35 p.m.33 views

CVE-2026-44008

CVE-2026-44008 describes a vm2 sandbox escape in the Node.js vm2 library. Before version 3.11.2, the method neutralizeArraySpeciesBatch could interact with objects from the outside and, via a getter on Array.prototype, expose host objects to the sandbox, allowing an attacker to access the host Fu...

9.8CVSS6.3AI score0.00851EPSS
CVE
CVE
added 2026/05/13 5:17 p.m.32 views

CVE-2026-43997

CVE-2026-43997 affects the vm2 sandbox for Node.js. The vuln enables an attacker to obtain the host Object and escape the sandbox, potentially leading to arbitrary code execution (RCE). Affected versions were

10CVSS6AI score0.00976EPSS
CVE
CVE
added 2026/05/13 5:30 p.m.32 views

CVE-2026-44003

vm2 (Node.js sandbox) prior to version 3.11.0 includes a transformer fast-path that bypasses AST analysis when code does not contain catch, import, or async, allowing sandboxed code to access internal state VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL and its security helpers (handleExcepti...

5.8CVSS5.8AI score0.00248EPSS
CVE
CVE
added 2026/05/04 4:28 p.m.30 views

CVE-2026-24118

VM2 (Node.js VM/Sandbox) prior to version 3.11.0 contains a sandbox breakout vulnerability that allows attackers to escape the VM2 sandbox and run arbitrary commands on the host. Impact is described as high for confidentiality, integrity, and availability. The issue has been fixed in version 3.11...

9.8CVSS6.1AI score0.00917EPSS
CVE
CVE
added 2026/05/13 5:36 p.m.30 views

CVE-2026-44009

vm2 (Node.js sandbox) contains a sandbox-breakout vulnerability: CVE-2026-44009, triggered by a null-proto exception in handleException, can let an attacker access the host Function and run arbitrary code, enabling remote-code-execution within the host. Affected: versions ≤ 3.11.1; patched in 3.1...

9.8CVSS6AI score0.00812EPSS
CVE
CVE
added 2026/05/04 4:37 p.m.29 views

CVE-2026-26956

CVE-2026-26956 concerns the vm2 sandbox for Node.js. Affected: vm2 v3.10.4 allows full sandbox escape enabling arbitrary code execution when code runs inside VM.run(); attacker code can access the host process and execute host commands. Patch available in v3.10.5. Impact flags from CVSS indicate ...

9.8CVSS6AI score0.00921EPSS
CVE
CVE
added 2026/05/13 5:31 p.m.27 views

CVE-2026-44006

vm2 (Node.js sandbox) contains a code execution risk via a vulnerability in BaseHandler.getPrototypeOf that can enable sandbox escape and remote code execution. The CVE-2026-44006 flaw affects versions up to 3.10.x and is fixed in 3.11.0. Exploitation relies on reaching BaseHandler.getPrototypeOf...

10CVSS6.1AI score0.00815EPSS
CVE
CVE
added 2026/05/13 5:31 p.m.26 views

CVE-2026-44004

CVE-2026-44004 affects vm2, an open‑source VM/sandbox for Node.js. Before version 3.11.0, sandboxed code can call Buffer.alloc() with any size, allocating host-heap memory directly via a synchronous C++ call; vm2’s timeout cannot interrupt such calls. A single request can exhaust memory and crash...

8.6CVSS6AI score0.00424EPSS
CVE
CVE
added 2026/05/04 4:31 p.m.23 views

CVE-2026-24120

Technical details about CVE-2026-24120 are not publicly available in the provided documents. The affected components, root cause, impact, and fixes are not specified here. Monitor for updates.

9.8CVSS7.7AI score0.00896EPSS
CVE
CVE
added 2026/05/13 5:21 p.m.23 views

CVE-2026-43999

CVE-2026-43999 affects vm2’s NodeVM when the builtins allowlist is configured with a wildcard that includes the module builtin. Prior to version 3.11.0, the module builtin can bypass vm2’s allowlist via Module._load, because vm2 exposes the host’s Module object through a readonly proxy that still...

9.9CVSS6.3AI score0.00974EPSS
CVE
CVE
added 2026/05/13 5:23 p.m.23 views

CVE-2026-44000

CVE-2026-44000 (vm2) : A sandbox boundary bypass in vm2 prior to version 3.11.0 allows host object identity to cross into the sandbox via host Promise resolution. When a host-side Promise resolves to a host object and is exposed to the sandbox, the value delivered to the sandbox .then() callback ...

7.2CVSS5.5AI score0.002EPSS
CVE
CVE
added 2026/05/04 4:35 p.m.14 views

CVE-2026-26332

vm2 (Node.js sandbox) contains a sandbox-escape vulnerability: prior to 3.11.0, SuppressedError can allow code execution outside the sandbox. The issue is fixed in version 3.11.0. Affected software: vm2; impact described as arbitrary code execution with sandbox escape. No exploitation details are...

10CVSS5.9AI score0.0071EPSS