cbcvebase.
CVE-2026-26956
published 2026-05-04

CVE-2026-26956: vm2 is an open source vm/sandbox for Node.js. In version 3.10.4, vm2 is vulnerable to full sandbox escape with arbitrary code execution. Attacker code inside…

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.92%
55.8th percentile
vm2 is an open source vm/sandbox for Node.js. In version 3.10.4, vm2 is vulnerable to full sandbox escape with arbitrary code execution. Attacker code inside VM.run() obtains host process object and runs host commands with zero host cooperation. This issue has been patched in version 3.10.5.

Affected

6 ranges
VendorProductVersion rangeFixed in
ansible-automation-platformautomation-portal
patriksimekvm2
rhdhbackstage-community-plugin-catalog-backend-module-scaffolder-relation-processor
rhdhrhdh-hub-rhel9
vm2_projectvm2< 3.10.53.10.5
vm2_projectvm2>= 3.10.4 < 3.10.53.10.5

Detection & IOCsextracted from sources · hover to see the quote

urlhttps://github.com/patriksimek/vm2/commit/1fbdeff743d48fb1416964777f5947057f6f1295
  • Alert on Symbol-to-string TypeError being triggered within vm2 sandbox contexts, which is the specific primitive used to leak a host-side error object back into the sandbox.
  • Monitor for unexpected access to the Node.js `process` object or child_process spawning from within vm2-sandboxed code paths, which indicates successful sandbox escape and host command execution.
  • Flag environments running Node.js 25 (specifically confirmed on 25.6.1) with WebAssembly exception handling and JSTag support enabled alongside vm2 version 3.10.4 or earlier as highest-risk targets.
  • A public PoC exploit demonstrating RCE on the host has been published; monitor threat intel feeds and public repositories for weaponized versions targeting vm2 3.10.4.
  • ·Vulnerability is confirmed only on vm2 version 3.10.4 under Node.js 25 with WebAssembly exception handling and JSTag support explicitly enabled; earlier vm2 versions may also be affected but are not confirmed.
  • ·Red Hat packages rhdh/backstage-community-plugin-catalog-backend-module-scaffolder-relation-processor and rhdh/rhdh-hub-rhel9 are listed as Affected, while ansible-automation-platform/automation-portal is Not Affected — scope detection rules accordingly.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.