Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons

Social Media

Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons
Search the Site
Popular Searches:
technology Amazon AI
Recent Posts
Microsoft Confirms Dell Laptop Overheating, Shutdowns After July Windows Update
July 15, 2026
FaceTime Call Impersonation Fraud Hijacks Bank Accounts
July 15, 2026
Critical Windows RDP Bugs Expose Sensitive Data, Patch Now
July 15, 2026
Home/CyberSecurity News/Critical vm2 Node.js Library Flaws Allow Arbitrary Code Execution
CyberSecurity News

Critical vm2 Node.js Library Flaws Allow Arbitrary Code Execution

Key Takeaways Eleven critical vulnerabilities have been discovered in the vm2 Node.js library, threatening applications that rely on it for secure code execution. These flaws allow attackers to...

David kimber
David kimber
May 7, 2026 4 Min Read
50 0

Key Takeaways

  • Eleven critical vulnerabilities have been discovered in the vm2 Node.js library, threatening applications that rely on it for secure code execution.
  • These flaws allow attackers to escape the vm2 sandbox and achieve arbitrary code execution on the host system.
  • The vulnerabilities affect all vm2 versions up to 3.11.1.
  • While most issues have patches available in vm2 version 3.11.0 or 3.11.1, two critical vulnerabilities (CVE-2026-44008 and CVE-2026-44009) remain unpatched.
  • The disclosures fundamentally undermine vm2’s security model, suggesting its JavaScript-only isolation is insufficient for high-security environments.

A series of eleven critical vulnerabilities have been uncovered in the vm2 Node.js library, jeopardizing countless applications designed to safely execute untrusted JavaScript code. These newly disclosed flaws allow malicious code to break out of its isolated environment and execute commands directly on the host system, compromising the integrity of the underlying infrastructure.

Table Of Content

  • Key Takeaways
  • Detailed Analysis of vm2 Vulnerabilities
  • Critical Sandbox Escapes
  • Exploiting Newer JavaScript Features
  • Prototype Chain and Module Loading Abuses
  • Configuration Flaws
  • Unpatched Critical Vulnerabilities
  • What You Should Do

The vm2 package is a widely adopted Node.js npm library, engineered to run untrusted JavaScript within a secure, isolated container. It serves as a foundational component for various critical systems, including online code execution platforms, continuous integration (CI) pipelines, plugin architectures, and multi-tenant cloud services. The library’s core security promise—to contain malicious code and protect the host—has been severely compromised by these recent findings.

Researchers have demonstrated eleven distinct techniques to bypass vm2’s sandbox, revealing significant weaknesses in its isolation model. Each of these vulnerabilities facilitates full remote code execution (RCE) on the host system, directly contradicting the library’s fundamental security guarantee.

Detailed Analysis of vm2 Vulnerabilities

The identified vulnerabilities exploit various mechanisms within Node.js and vm2 itself, demonstrating a broad attack surface.

Critical Sandbox Escapes

  • CVE-2026-24118 leverages specific behaviors of __lookupGetter__ to achieve a sandbox escape.
  • CVE-2026-24120 bypasses Promise species protections, enabling command execution via child_process.execSync.
  • CVE-2026-24781 exploits Node.js’s util module by abusing its inspect internals to expose raw host objects, thereby bypassing vm2’s proxy-based isolation.

Exploiting Newer JavaScript Features

Modern JavaScript features also introduced new attack vectors:

  • CVE-2026-26332 exploits DisposableStack and SuppressedError mechanics, specifically in Node.js v24, to expose the host’s Function object.
  • CVE-2026-26956 targets Node.js v25, utilizing a WebAssembly try_table instruction to completely bypass vm2’s sanitization processes. Researchers successfully achieved root-level code execution using this method.

Prototype Chain and Module Loading Abuses

Additional vulnerabilities involve manipulating JavaScript prototype chains and module loading logic:

  • CVE-2026-43997 and CVE-2026-44006 both exploit util.inspect and prototype traversal techniques to escape the sandbox.
  • CVE-2026-43999 circumvents vm2’s internal module restrictions by abusing Module._load(), even in scenarios where child_process is explicitly blocked.
  • CVE-2026-44005 enables prototype pollution, allowing attackers to modify shared host prototypes like Object.prototype and Function.prototype, which could impact the entire Node.js process.

Configuration Flaws

A significant configuration vulnerability, tracked as GHSA-8hg8-63c5-gwmx, highlighted that enabling nesting: true effectively neutralizes the require: false security control. This allows sandboxed code to create unrestricted inner VMs, leading to full RCE despite explicit security restrictions.

Unpatched Critical Vulnerabilities

Of particular concern are two critical vulnerabilities, CVE-2026-44008 and CVE-2026-44009, which remain unpatched across all vm2 versions up to 3.11.1. These flaws exploit how array species are handled and specific exception logic to expose host-side objects and regain unrestricted access to the host’s Function constructor.

The table below summarizes the identified vulnerabilities, their affected versions, and the patched versions where applicable:

CVE ID Affected Versions Patched Version
CVE-2026-24118 ≤ 3.10.4 3.11.0
CVE-2026-24120 ≤ 3.10.3 3.10.5
CVE-2026-24781 ≤ 3.10.3 3.11.0
CVE-2026-26332 ≤ 3.10.4 3.11.0
CVE-2026-26956 3.10.4 3.10.5
CVE-2026-43997 ≤ 3.10.5 3.11.0
CVE-2026-43999 3.10.5 3.11.0
CVE-2026-44005 3.9.6–3.10.5 3.11.0
CVE-2026-44006 ≤ 3.10.5 3.11.0
CVE-2026-44008 ≤ 3.11.1 No patch available
CVE-2026-44009 ≤ 3.11.1 No patch available
— ≤ 3.11.0 3.11.1

According to reports published by patriksimek on GitHub, these eleven vulnerabilities collectively expose deep-seated weaknesses in vm2’s sandbox security model, posing substantial risks to applications designed to execute untrusted code.

What You Should Do

  • Upgrade Immediately: All users of vm2 should upgrade their installations to version 3.11.1 without delay to address all currently patched vulnerabilities.
  • Mitigate Unpatched Flaws: For the unpatched vulnerabilities CVE-2026-44008 and CVE-2026-44009, organizations should seriously consider discontinuing the use of vm2-based sandboxing entirely. Instead, explore robust kernel-level isolation technologies such as Docker, gVisor, or Firecracker microVMs.
  • Review Configuration: Developers must strictly avoid using the nesting: true option and wildcard built-in configurations, such as ['*', '-child_process'], in any environment where untrusted code is executed.
  • Re-evaluate Security Model: Given the extensive range and sophistication of these bypass techniques—encompassing JavaScript prototype manipulation, WebAssembly exception handling, Promise species overwriting, and module loading abuses—vm2’s JavaScript-only isolation model should be considered fundamentally inadequate for high-security applications or environments handling truly untrusted code.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.

Tags:

AttackCVEExploitPatchSecurity

Share Article

David kimber

David kimber

David is a penetration tester turned security journalist with expertise in mobile security, IoT vulnerabilities, and exploit development. As an OSCP-certified security professional, David brings hands-on technical experience to his reporting on vulnerabilities and security research. His articles often feature detailed technical analysis of exploits and provide actionable defense recommendations. David maintains an active presence in the security research community and has contributed to multiple open-source security tools.

Previous Post

Claude AI Used in Cyberattacks Targeting Water and Drainage Utilities

Next Post

Malicious NuGet Packages Steal Browser Credentials, SSH Keys, Crypto Wallets

No Comment! Be the first one.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Posts
Critical Flaw in EU Age Verification App Lets Attackers Bypass Checks
July 15, 2026
Critical SonicWall Firewall CVE-2021-20021, CVE-2021-20022 Zero-Days Actively Exploited
July 15, 2026
Chinese Hackers Use Claude, DeepSeek AI in Government Cyberattacks
July 15, 2026
Top Authors
Marcus Rodriguez
Marcus Rodriguez
Emy Elsamnoudy
Emy Elsamnoudy
Jennifer sherman
Jennifer sherman
Let's Connect
156k
2.25m
285k

Related Posts

Jennifer sherman
By Jennifer sherman
Threats

GlassWorm Attacks macOS via Malicious VS Code…

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Attacks

ClickFix Attack Hides Malicious Code via Stegan Security

January 1, 2026
Sarah simpson
By Sarah simpson
Vulnerabilities

MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Breaches

Conti Ransomware Gang Leaders & Infrastructure Exposed

January 1, 2026
Hackers News Hackers News
  • [email protected]

Quick Links

  • Contact Us
  • Privacy Policy
  • Terms of service

Categories

Attacks
Breaches
Comparisons
CyberSecurity News
Threats
Vulnerabilities

Let's keep in touch

receive fresh updates and breaking cyber news every day and week!

All Rights Reserved by HackersRadar ©2026

Follow Us