CVE-2026-44003
published 2026-05-13CVE-2026-44003: vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, vm2's code transformer has a performance optimization that skips AST analysis when the code does…
PriorityP432medium5.8CVSS 3.1
AVNACLPRNUINSCCLINAN
EPSS
0.25%
16.0th percentile
vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, vm2's code transformer has a performance optimization that skips AST analysis when the code does not contain catch, import, or async keywords. This fast-path bypass allows sandboxed code to directly access the internal VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL variable, which exposes internal security functions (handleException, wrapWith, import). This vulnerability is fixed in 3.11.0.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ansible-automation-platform | automation-portal | — | — |
| patriksimek | vm2 | < 3.11.0 | 3.11.0 |
| rhdh | rhdh-hub-rhel9 | — | — |
| vm2_project | vm2 | < 3.11.0 | 3.11.0 |
| vm2_project | vm2 | >= 0 < 3.11.0 | 3.11.0 |
CVSS provenance
nvdv3.15.8MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
vendor_redhat5.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
patriksimek vm2 up to 3.10.x protection mechanism (GHSA-wp5r-2gw5-m7q7)
vuldb·2026-05-13·CVSS 5.3
CVE-2026-44003 [MEDIUM] patriksimek vm2 up to 3.10.x protection mechanism (GHSA-wp5r-2gw5-m7q7)
A vulnerability was found in patriksimek vm2 up to 3.10.x. It has been classified as problematic. This impacts an unknown function. Performing a manipulation of the argument VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL results in protection mechanism failure.
This vulnerability is cataloged as CVE-2026-44003. It is possible to initiate the attack remotely. There is no exploit available.
Upgrading the affected component is recommended.
GHSA
vm2's Transformer Fast-Path Bypass Exposes Internal State Variable
ghsa·2026-05-07
CVE-2026-44003 [MEDIUM] CWE-693 vm2's Transformer Fast-Path Bypass Exposes Internal State Variable
vm2's Transformer Fast-Path Bypass Exposes Internal State Variable
### Summary
vm2's code transformer has a performance optimization that skips AST analysis when the code does not contain `catch`, `import`, or `async` keywords. This fast-path bypass allows sandboxed code to directly access the internal `VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL` variable, which exposes internal security functions (`handleException`, `wrapWith`, `import`).
### Details
In `lib/transformer.js:55-57`, a regex check `/\b(?:catch|import|async)\b/` determines whether AST transformation is needed. If the code does not contain any of these keywords, the transformer returns the code unmodified.
When the fast-path is taken:
1. **INTERNAL_STATE_NAME identifier check is bypassed**: The AST visitor that bloc
Red Hat
vm2: vm2: Sandbox escape due to code transformer optimization bypass
vendor_redhat·2026-05-13·CVSS 5.8
CVE-2026-44003 [MEDIUM] CWE-733 vm2: vm2: Sandbox escape due to code transformer optimization bypass
vm2: vm2: Sandbox escape due to code transformer optimization bypass
vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, vm2's code transformer has a performance optimization that skips AST analysis when the code does not contain catch, import, or async keywords. This fast-path bypass allows sandboxed code to directly access the internal VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL variable, which exposes internal security functions (handleException, wrapWith, import). This vulnerability is fixed in 3.11.0.
A flaw was found in vm2 (before 3.11.0). A code transformer fast-path skips AST analysis when catch, import, and async are absent, allowing direct access to VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL and internal security functions (handleException, wrapWith,
No detection rules found.
No public exploits indexed.
2026-05-13
Published