CVE-2026-24118
published 2026-05-04CVE-2026-24118: vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code…
PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.92%
55.7th percentile
vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.11.0.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ansible-automation-platform | automation-portal | — | — |
| patriksimek | vm2 | < 3.11.0 | 3.11.0 |
| rhdh | rhdh-hub-rhel9 | — | — |
| vm2_project | vm2 | < 3.11.0 | 3.11.0 |
| vm2_project | vm2 | >= 0 < 3.11.0 | 3.11.0 |
Detection & IOCsextracted from sources · hover to see the quote
- →Sandbox breakout in vm2 prior to version 3.11.0 allows arbitrary command execution on the host system; monitor for unexpected process spawning from Node.js processes using vm2 ↗
- →Exploitation requires the attacker to have privileges to run untrusted code within the vm2 environment, or to trick a user into running such code; alert on untrusted script execution within vm2-hosted environments ↗
- ·vm2 versions prior to 3.11.0 are vulnerable; upgrade to 3.11.0 or later to remediate ↗
- ·Red Hat Developer Hub is NOT affected as vm2 is only a development dependency and is not reachable by an adversary in that product ↗
- ·Self-service automation portal 2 (ansible-automation-platform/automation-portal) is confirmed AFFECTED and should be prioritized for patching ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
vm2: vm2: Arbitrary code execution due to sandbox breakout
vendor_redhat·2026-05-04·CVSS 9.8
CVE-2026-24118 [CRITICAL] CWE-749 vm2: vm2: Arbitrary code execution due to sandbox breakout
vm2: vm2: Arbitrary code execution due to sandbox breakout
A flaw was found in vm2, an open-source sandbox for Node.js. This sandbox breakout vulnerability allows attackers to write malicious code that can escape the vm2 sandbox. Successful exploitation enables the execution of arbitrary commands on the host system, leading to critical system compromise.
Statement: This Important vulnerability in vm2, an open-source Node.js sandbox, allows for a sandbox breakout, enabling attackers to execute arbitrary commands on the host system. To exploit this issue the attacker needs to have privileges to run untrusted code within the `vm2` environment or trick the user to run such code.
Red Hat Developer Hub is not affected by this vulnerability as the `vm2` package is a development dependency and t
VulDB
patriksimek vm2 up to 3.10.x code injection (GHSA-grj5-jjm8-h35p / WID-SEC-2026-1349)
vuldb·2026-05-04·CVSS 9.8
CVE-2026-24118 [CRITICAL] patriksimek vm2 up to 3.10.x code injection (GHSA-grj5-jjm8-h35p / WID-SEC-2026-1349)
A vulnerability was found in patriksimek vm2 up to 3.10.x. It has been classified as critical. This vulnerability affects unknown code. Performing a manipulation results in code injection.
This vulnerability was named CVE-2026-24118. The attack may be initiated remotely. There is no available exploit.
Upgrading the affected component is recommended.
GHSA
VM2 Sandbox Breakout Through __lookupGetter__
ghsa·2026-05-04
CVE-2026-24118 [CRITICAL] CWE-693 VM2 Sandbox Breakout Through __lookupGetter__
VM2 Sandbox Breakout Through __lookupGetter__
### Summary
VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system.
### Details
The `__lookupGetter__` method allows to read the getter of an object. It is special in VM2 since it will switch between the host and sandbox version of the method when passed to the other context.
This allows to access getters on an object in the host context if the method is called from the host context which can be achieved by using the host `apply` method which can be accessed through `Buffer.apply`.
Afterwards, this function can be used to call the host version of `__lookupGetter__` with `Buffer` and `__proto__` resulting in the prototype l
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-24118 vm2: vm2: Arbitrary code execution due to sandbox breakout
bugzilla·2026-05-04·CVSS 9.8
CVE-2026-24118 [CRITICAL] CVE-2026-24118 vm2: vm2: Arbitrary code execution due to sandbox breakout
CVE-2026-24118 vm2: vm2: Arbitrary code execution due to sandbox breakout
vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.11.0.
Hackernews
vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
blogs_hackernews·2026-05-07·CVSS 10.0
CVE-2026-24118 [CRITICAL] vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the sandbox and execute arbitrary code on susceptible systems.
vm2 is an open-source library used to run untrusted JavaScript code inside a secure sandbox by intercepting and proxying JavaScript objects to prevent sandboxed code from accessing the host environment.
The security flaws are listed below -
CVE-2026-24118 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via "__lookupGette
https://github.com/patriksimek/vm2/commit/2b5f3e3a060d9088f5e1cdd585d683d491f990a3https://github.com/patriksimek/vm2/commit/f9b700b1c7d9ef2df416666cb24e0b659140cc74https://github.com/patriksimek/vm2/releases/tag/v3.11.0https://github.com/patriksimek/vm2/security/advisories/GHSA-grj5-jjm8-h35phttps://access.redhat.com/security/cve/CVE-2026-24118https://bugzilla.redhat.com/show_bug.cgi?id=2466502https://github.com/patriksimek/vm2/security/advisories/GHSA-grj5-jjm8-h35phttps://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-24118.json
2026-05-04
Published