cbcvebase.
CVE-2026-43998
published 2026-05-13

CVE-2026-43998: vm2 is an open source vm/sandbox for Node.js. In 3.10.5, NodeVM's require.root path restriction can be bypassed using filesystem symlinks, allowing sandboxed…

PriorityP262high8.5CVSS 3.1
AVNACHPRLUINSCCHIHAH
EPSS
0.72%
49.3th percentile
vm2 is an open source vm/sandbox for Node.js. In 3.10.5, NodeVM's require.root path restriction can be bypassed using filesystem symlinks, allowing sandboxed code to load modules from outside the allowed root directory in host context. Because path validation uses path.resolve() (which does not dereference symlinks) but module loading uses Node's native require() (which does), an attacker can load arbitrary host-realm modules and achieve remote code execution. This vulnerability is fixed in 3.11.0.

Affected

5 ranges
VendorProductVersion rangeFixed in
ansible-automation-platformautomation-portal
patriksimekvm2
rhdhrhdh-hub-rhel9
vm2_projectvm2
vm2_projectvm2>= 3.10.5 < 3.11.03.11.0

Detection & IOCsextracted from sources · hover to see the quote

  • Sandboxed code attempts to load modules via symlinks that resolve outside the require.root directory — monitor for Node.js require() calls resolving to paths outside the configured root in vm2 NodeVM instances
  • Detect discrepancy between path.resolve() output and the real (symlink-dereferenced) path of required modules in vm2 NodeVM — a mismatch indicates potential exploitation of this bypass
  • Flag vm2 version 3.10.5 in software inventory as vulnerable; any deployment running this version with NodeVM and require.root restrictions is exploitable for RCE
  • Audit require.root directories for symlinks pointing outside the allowed path — presence of such symlinks is a prerequisite for exploitation
  • Treat low-privilege users who can execute code inside a NodeVM with require restrictions as a potential RCE threat vector when vm2 < 3.11.0 is in use
  • ·Vulnerable version is exactly 3.10.5; the fix is present in 3.11.0 — version checks should target vm2 < 3.11.0
  • ·Exploitation requires the attacker to be able to place or access symlinks within the require.root directory; environments where the filesystem is read-only or symlinks are disallowed reduce exploitability
  • ·Red Hat packages rhdh/rhdh-hub-rhel9 and ansible-automation-platform/automation-portal are listed as under investigation — detection coverage for those products is not yet confirmed
  • ·The vulnerability is scoped to NodeVM with require.root restrictions; vm2 deployments that do not use require.root or do not expose require to sandboxed code are not affected by this specific bypass

CVSS provenance

nvdv3.18.5HIGHCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
vendor_redhat8.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.