CVE-2026-43997 - Vulnerability Details

Description

vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, it is possible to obtain the host Object. There are various ways to use the host Object, to escape the sandbox, one example would be using HostObject.getOwnPropertySymbols to obtain Symbol(nodejs.util.inspect.custom). This vulnerability is fixed in 3.11.0.

Published: 2026-05-13

Score: 10 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A flaw in the Node.js sandbox library vm2 allows an attacker to obtain the host object from within the sandboxed context. By accessing the host object, an attacker can call methods such as HostObject.getOwnPropertySymbols to exploit internal symbols like Symbol(nodejs.util.inspect.custom), effectively escaping the sandbox and gaining unrestricted control over the host environment. This is a code injection type weakness, falling under CWE-94.

Affected Systems

The vulnerability exists in the patriksimek vm2 library for all releases prior to version 3.11.0. Applications that import older versions of vm2 and execute untrusted code are susceptible.

Risk and Exploitability

The CVSS score of 10 indicates a critical severity, and the absence of an EPSS score leaves the exact exploitation probability uncertain, though the vulnerability is not yet listed in the CISA KEV catalog. The likely attack vector is the execution of malicious JavaScript payloads within a vm2 sandbox; an attacker who can supply code to be run in the sandbox can trigger the escape. With the host object exposed, the attacker can execute arbitrary code on the host system, leading to full system compromise. Prompt remediation is advised to eliminate this risk.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

patriksimek

vm2

affected

Version	Status	Constraints
`< 3.11.0`	affected	—

Configuration 1 [-]

cpe:2.3:a:vm2_project:vm2:*:*:*:*:*:node.js:*:*

No data.

Vendor Product Confidence Versions

Patriksimek

Vm2

100%

Version	Status	Scheme	Platform
`[0,3.11.0)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the vm2 library to version 3.11.0 or later, which contains the fix for the sandbox escape.
Avoid running untrusted or externally supplied code inside vm2 instances; remove any such usage or isolate it in a separate, tightly controlled process.
As a temporary containment measure, execute the vm2 sandbox in a separate container or virtual machine, restricting network and filesystem access to mitigate potential impact if the vulnerability is exploited.

Generated by OpenCVE AI on May 13, 2026 at 19:49 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Github GHSA	GHSA-47x8-96vw-5wg6	vm2 Access to Host Object Enables Sandbox Escape

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00022.

Exploitation poc

Automatable yes

Technical Impact total

References

Link	Providers
https://github.com/patriksimek/vm2/security/advisories/GHSA-47x8-96vw-5wg6

History

Thu, 14 May 2026 15:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Vm2 Project Vm2 Project vm2
CPEs		cpe:2.3:a:vm2_project:vm2::::::node.js::*
Vendors & Products		Vm2 Project Vm2 Project vm2

Thu, 14 May 2026 05:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 13 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Patriksimek Patriksimek vm2
Vendors & Products		Patriksimek Patriksimek vm2

Wed, 13 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
Description		vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, it is possible to obtain the host Object. There are various ways to use the host Object, to escape the sandbox, one example would be using HostObject.getOwnPropertySymbols to obtain Symbol(nodejs.util.inspect.custom). This vulnerability is fixed in 3.11.0.
Title		vm2: Sandbox Escape
Weaknesses		CWE-94
References		https://github.com/patriksimek/vm2/security/advisories/GHSA-47x8-96vw-5wg6
Metrics		cvssV3_1 `{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}`

Subscriptions

Patriksimek Vm2

Vm2 Project Vm2

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-05-13T17:17:54.869Z

Updated: 2026-05-14T03:56:41.615Z

Reserved: 2026-05-04T20:24:31.917Z

Link: CVE-2026-43997

Vulnrichment

Updated: 2026-05-13T18:40:07.880Z

NVD

Status : Analyzed

Published: 2026-05-13T18:16:16.177

Modified: 2026-05-14T15:37:30.850

Link: CVE-2026-43997

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-13T20:00:04Z

Weaknesses

CWE-94

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation poc

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object