Skip to content
CVSS 10.0CVSS 10.0 · CRITICAL

CVE-2026-44005

vm2 is an open source vm/sandbox for Node.js. From 3.9.6 to 3.10.5, vm2's bridge exposes mutable proxies for real host-realm intrinsic prototypes and then forwards sandbox writes into the underlying host objects with otherReflectSet() and otherReflectDefineProperty(), which lets attacker-controlled JavaScript running in a default VM or inherited NodeVM mutate shared host Object.prototype, Array.prototype, and Function.prototype from inside the sandbox This vulnerability is fixed in 3.11.0.

View on NVD

Analysis

A critical sandbox escape in the vm2 library for Node.js allows malicious code to bypass isolation and execute arbitrary commands on the host machine. This vulnerability affects versions 3.9.6 through 3.10.5 and is achieved by mutating host-realm prototypes like Object and Array from within the sandbox.

Severity

Score: 10.0(CRITICAL)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
AV: NETWORK
AC: LOW
PR: NONE
UI: NONE
S: CHANGED
C: NONE
I: HIGH
A: HIGH
Weakness (CWE): CWE-94CWE-1321

EPSS

No EPSS score yet (CVE may be too fresh).

Technical description

vm2 is an open source vm/sandbox for Node.js. From 3.9.6 to 3.10.5, vm2's bridge exposes mutable proxies for real host-realm intrinsic prototypes and then forwards sandbox writes into the underlying host objects with otherReflectSet() and otherReflectDefineProperty(), which lets attacker-controlled JavaScript running in a default VM or inherited NodeVM mutate shared host Object.prototype, Array.prototype, and Function.prototype from inside the sandbox This vulnerability is fixed in 3.11.0.

Published: 5/13/2026, 6:16:17 PM
Last modified: 5/13/2026, 6:17:47 PM

References

HomeEventsBlogResourcesTeam