Description
vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.11.0.
Published: 2026-05-04
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

vm2 is an open-source JavaScript virtual machine designed to sandbox Node.js code. The flaw arises from an unsafe use of the __lookupGetter__ method, allowing code executed inside the vm2 sandbox to escape and execute arbitrary commands on the host system. This represents a classic code injection weakness (CWE‑94) combined with inadequate isolation controls (CWE‑693 and CWE‑749). If exploited, an attacker could compromise the entire host environment, gaining full read/write/execute privileges.

Affected Systems

The issue affects the patriksimek vm2 package in all releases prior to version 3.11.0. Systems that incorporate the older vm2 library and provide untrusted code to the sandbox are vulnerable. The vulnerability was fixed in vm2 releases starting at v3.11.0.

Risk and Exploitability

The vulnerability has a CVSS score of 9.8, indicating critical severity. The EPSS score of 0.00162 demonstrates a very low but non‑zero exploitation probability. The vulnerability is not listed in the CISA KEV catalog. The likely attack vector is a user who can supply code to vm2; via malicious exploitation of __lookupGetter__, that code can break out of the sandbox. The exploit requires the attacker to run within a Node.js process that includes vm2, so it may be local or remote depending on how the library is exposed. Timely patching is essential due to the high impact of remote code execution.

Generated by OpenCVE AI on May 16, 2026 at 01:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade vm2 to version 3.11.0 or later, which removes the unsafe __lookupGetter__ usage.
  • If an immediate upgrade is not possible, eliminate any use of vm2 for untrusted code and consider replacing it with a more secure sandboxing solution.
  • Apply input validation and strict access controls around code that is executed within vm2, ensuring that only trusted code is evaluated in the sandbox.

Generated by OpenCVE AI on May 16, 2026 at 01:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-grj5-jjm8-h35p VM2 Sandbox Breakout Through __lookupGetter__
History

Sat, 16 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-749
References
Metrics threat_severity

None

 threat_severity

Important

Fri, 08 May 2026 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Vm2 Project
Vm2 Project vm2
CPEs cpe:2.3:a:vm2_project:vm2:*:*:*:*:*:node.js:*:*
Vendors & Products Vm2 Project
Vm2 Project vm2

Mon, 04 May 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 04 May 2026 19:00:00 +0000

Type Values Removed Values Added
First Time appeared Patriksimek
Patriksimek vm2
Vendors & Products Patriksimek
Patriksimek vm2

Mon, 04 May 2026 17:15:00 +0000

Type Values Removed Values Added
Description vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.11.0.
Title VM2 Sandbox Breakout Through __lookupGetter__
Weaknesses CWE-693
CWE-94
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Patriksimek Vm2
Vm2 Project Vm2
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-04T18:24:33.166Z

Reserved: 2026-01-21T18:38:22.472Z

Link: CVE-2026-24118

cve-icon Vulnrichment

Updated: 2026-05-04T18:24:29.528Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-04T17:16:21.643

Modified: 2026-05-08T19:30:38.780

Link: CVE-2026-24118

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-04T16:28:43Z

Links: CVE-2026-24118 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-16T02:00:12Z

Weaknesses