CVE 10 CRITICAL

vm2: Sandbox Escape_CVE-2026-47131

June 12, 2026 invoker category_cve

10 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Description

vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, by combining Buffer.call.call({}.__lookupGetter__, Buffer, "__proto__"), Buffer.call.call({}.__lookupSetter__, Buffer, "__proto__"), and Node.js's ERR_INVALID_ARG_TYPE Error, the host's TypeError constructor can be obtained, which allows the escape from the sandbox. This allows attackers to run arbitrary code. This issue has been patched in version 3.11.4.

AI Analysis

Sandbox escape vulnerability in vm2 prior to version 3.11.4, allowing attackers to run arbitrary code.

Basic Information

ID CVE-2026-47131

Source GitHub_M

Published Jun 12, 2026 at 14:14

Affected Product

Vendor patriksimek

Product vm2

Version < 3.11.4

Affected Versions patriksimek vm2 < 3.11.4

CWE Classification

CWE-913

AI Assessment

AI Score 10 / 10

AI Severity Critical

Vendor patriksimek

Product vm2

Version < 3.11.4

References

{
    "lastseen": "",
    "description": "vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, by combining Buffer.call.call({}.__lookupGetter__, Buffer, \"__proto__\"), Buffer.call.call({}.__lookupSetter__, Buffer, \"__proto__\"), and Node.js's ERR_INVALID_ARG_TYPE Error, the host's TypeError constructor can be obtained, which allows the escape from the sandbox. This allows attackers to run arbitrary code. This issue has been patched in version 3.11.4.",
    "published": "2026-06-12T14:14:17.037Z",
    "modified": "2026-06-12T14:14:17.037Z",
    "type": "cve",
    "title": "vm2: Sandbox Escape",
    "source": "GitHub_M",
    "references": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v6mx-mf47-r5wg\nhttps://github.com/patriksimek/vm2/commit/27c525f4615e2b983f122e2bed327d810126f5c8\nhttps://github.com/patriksimek/vm2/releases/tag/v3.11.4",
    "id": "CVE-2026-47131",
    "bulletinFamily": "",
    "cwe": [
        "CWE-913"
    ],
    "cvelist": null,
    "sourceData": "patriksimek vm2 < 3.11.4",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "vm2",
    "version": "< 3.11.4",
    "vendor": "patriksimek",
    "ai_description": "Sandbox escape vulnerability in vm2 prior to version 3.11.4, allowing attackers to run arbitrary code.",
    "ai_severity": "Critical",
    "ai_vendor": "patriksimek",
    "ai_product": "vm2",
    "ai_version": "< 3.11.4",
    "ai_score": 10
}

💭 Join the Security Discussion ❌ Cancel Reply