Node JSfromBleepingComputer58 minutes agoCritical vm2 sandbox bug lets attackers execute code on hostsA critical vulnerability in vm2 allows escaping the sandbox and executing arbitrary code on the host system.
Information securityfromBleepingComputer3 months agoCritical sandbox escape flaw discovered in popular vm2 NodeJS libraryCVE-2026-22709 in vm2 allows sandbox escape via Promise callback sanitization flaws, enabling arbitrary code execution on the host.