Description
vm2 is an open source vm/sandbox for Node.js. Prior to version 3.10.5, the fix for CVE-2023-37466 is insufficient and can be circumvented allowing attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.10.5.
Published: 2026-05-04
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

vm2 is a widely used Node.js virtual machine sandbox. A flaw in the handling of Promises in versions prior to 3.10.5 allows an attacker to inject code that bypasses the sandbox boundary. The vulnerability is based on improper code generation (CWE‑94), security misconfiguration (CWE‑693) and improper use of Promise species (CWE‑807). When exploited, the attacker can break out of the isolated VM and execute arbitrary commands on the host system, leading to full system compromise.

Affected Systems

The affected product is patriksimek’s vm2 library, versions earlier than 3.10.5. Users of any Node.js application that relies on vm2 for sandboxing—such as web servers, code execution services, or build tools—must ensure they are running at least version 3.10.5 or later. The advisory provides release notes for v3.10.5 as the fix.

Risk and Exploitability

An estimated CVSS score of 9.8 categorizes this as critical, with a high potential for exploitation. The EPSS score of < 1% indicates a very low probability that the vulnerability will be exploited in the wild, though the flaw remains a serious risk if an attacker can execute code within the vm2 sandbox. The vulnerability is not listed in the CISA KEV catalog, indicating no known mass exploitation. Nonetheless, the attack vector is inferred to be compromised or malicious sandboxed code—an attacker who can influence the content passed to vm2 poses a substantial threat. The only known mitigation is to apply the patch released in v3.10.5, after which the sandbox boundary is restored and the code execution vector is closed.

Generated by OpenCVE AI on May 16, 2026 at 01:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade vm2 to version 3.10.5 or newer; this releases the definitive patch for the sandbox breakout.
  • If an upgrade is not immediately possible, remove or disable any usage of vm2 in the application, or isolate the sandboxed code in a separate, highly tainted environment with strict execution controls.
  • As an interim precaution, review any exposed sandbox entry points to ensure they cannot inject or alter Promise species; restrict code evaluation to trusted sources only, and employ static analysis to detect malicious patterns.

Generated by OpenCVE AI on May 16, 2026 at 01:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-qvjj-29qf-hp7p VM2 Has Sandbox Breakout Through Promise Species
History

Sat, 16 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-807
References
Metrics threat_severity

None

 threat_severity

Important

Fri, 08 May 2026 19:30:00 +0000

Type Values Removed Values Added
First Time appeared Vm2 Project
Vm2 Project vm2
CPEs cpe:2.3:a:vm2_project:vm2:*:*:*:*:*:node.js:*:*
Vendors & Products Vm2 Project
Vm2 Project vm2

Tue, 05 May 2026 01:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 04 May 2026 21:15:00 +0000

Type Values Removed Values Added
First Time appeared Patriksimek
Patriksimek vm2
Vendors & Products Patriksimek
Patriksimek vm2

Mon, 04 May 2026 17:15:00 +0000

Type Values Removed Values Added
Description vm2 is an open source vm/sandbox for Node.js. Prior to version 3.10.5, the fix for CVE-2023-37466 is insufficient and can be circumvented allowing attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.10.5.
Title vm2: Sandbox Breakout Through Promise Species
Weaknesses CWE-693
CWE-94
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Patriksimek Vm2
Vm2 Project Vm2
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-05T01:00:38.037Z

Reserved: 2026-01-21T18:38:22.473Z

Link: CVE-2026-24120

cve-icon Vulnrichment

Updated: 2026-05-05T01:00:32.361Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-04T17:16:21.813

Modified: 2026-05-08T19:29:59.830

Link: CVE-2026-24120

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-04T16:31:13Z

Links: CVE-2026-24120 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-16T02:00:12Z

Weaknesses