Known Vulnerabilities for products from Vm2 Project
Listed below are 17 of the newest known vulnerabilities associated with the vendor "Vm2 Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-45184 json | Not Provided | 2026-05-09 | 2026-05-10 | |
| CVE-2026-44987 json | Not Provided | 2026-05-08 | 2026-05-08 | |
| CVE-2026-44263 json | Not Provided | 2026-05-07 | 2026-05-07 | |
| CVE-2026-43877 json | Not Provided | 2026-05-11 | 2026-05-11 | |
| CVE-2026-43288 json | Not Provided | 2026-05-08 | 2026-05-11 | |
| CVE-2026-43001 json | Not Provided | 2026-05-01 | 2026-05-01 | |
| CVE-2026-42812 json | Not Provided | 2026-05-04 | 2026-05-04 | |
| CVE-2026-42461 json | Not Provided | 2026-05-09 | 2026-05-09 | |
| CVE-2026-42249 json | Not Provided | 2026-04-29 | 2026-04-29 | |
| CVE-2026-42248 json | Not Provided | 2026-04-29 | 2026-04-29 | |
| CVE-2026-26956 json | vm2 is an open source vm/sandbox for Node.js. In version 3.10.4, vm2 is vulnerable to full sandbox escape with arbitrary code... | Not Provided | 2026-05-04 | 2026-05-08 |
| CVE-2026-26332 json | vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, SuppressedError allows attackers to escape the sandbox... | Not Provided | 2026-05-04 | 2026-05-06 |
| CVE-2026-24781 json | vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability thro... | Not Provided | 2026-05-04 | 2026-05-08 |
| CVE-2026-24120 json | vm2 is an open source vm/sandbox for Node.js. Prior to version 3.10.5, the fix for CVE-2023-37466 is insufficient and can be ... | Not Provided | 2026-05-04 | 2026-05-08 |
| CVE-2026-24118 json | vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. Thi... | Not Provided | 2026-05-04 | 2026-05-08 |
| CVE-2023-37903 json | vm2 is an open source vm/sandbox for Node.js. In vm2 for versions up to and including 3.9.19, Node.js custom inspect function... | 10 - CRITICAL | 2023-07-21 | 2024-02-01 |
| CVE-2023-37466 json | vm2 is an advanced vm/sandbox for Node.js. The library contains critical security issues and should not be used for productio... | 10 - CRITICAL | 2023-07-14 | 2024-02-01 |
| CVE-2023-32314 json | vm2 is a sandbox that can run untrusted code with Node's built-in modules. A sandbox escape vulnerability exists in vm2 for v... | 10 - CRITICAL | 2023-05-15 | 2023-05-24 |
| CVE-2023-32313 json | vm2 is a sandbox that can run untrusted code with Node's built-in modules. In versions 3.9.17 and lower of vm2 it was possibl... | 5.3 - MEDIUM | 2023-05-15 | 2023-05-24 |
| CVE-2023-30547 json | vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. There exists a vulnerability in except... | 10 - CRITICAL | 2023-04-17 | 2023-04-28 |