External risk intelligence

vm2 sandbox could allow external attackers to compromise the host server.

The vm2 sandbox library could allow external attackers to bypass security isolation and compromise the host server. This flaw could potentially expose sensitive files, credentials, or customer data stored in backend services.

NVD published May 13, 2026 (2 days ago)

External risk briefCRITICAL

CVE-2026-44005

Halo Surface Signal

2/ 5

This vulnerability exists in a backend Node.js library used for code isolation. While some applications use this library to handle untrusted input, the component is a code-level dependency integrated into backend processes. It is not an edge-facing service or standalone network appliance, and its exposure depends entirely on the specific application implementation.

Exposure facts

CVSS

10.0

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H

EPSS

0.05%

H – Horizon Alert

The vm2 sandbox environment for Node.js contains a vulnerability that allows code running within the isolated environment to bypass intended security boundaries. By manipulating how the system handles internal objects, an attacker can modify critical components of the underlying host environment that are supposed to remain protected. This flaw is significant because it compromises the fundamental isolation between the sandbox and the host, potentially allowing unauthorized code to influence the broader system.

A – Asset Exposure

This vulnerability affects Node.js applications that rely on the vm2 library to safely isolate and process untrusted code. If the sandbox environment is compromised, it may allow malicious scripts to interact with the host system, potentially exposing sensitive files, credentials, or customer data. Because this library is typically integrated into backend services, the risk is primarily focused on the integrity of the host application’s internal processes and data.

L – Live Threat

The current security context for this finding does not provide evidence of active exploitation or observed targeting against systems. There is no information regarding the availability of public exploit code or proof-of-concept activity associated with this vulnerability. Consequently, there are no live-threat signals indicating an immediate or widespread risk at this time.

O – Operational Fix

We recommend that your development teams prioritize updating the vm2 sandbox library to the latest available release. This action resolves a vulnerability that could allow unauthorized manipulation of host system objects from within the sandbox. Please coordinate with your engineering leadership to ensure this update is validated and implemented across all relevant applications.