CPE

Cpe:2.3:a:vm2_project:vm2:::*:::node.js::

1 brief RSS

VM2 Sandbox Breakout via Async Generator

A sandbox breakout vulnerability exists in vm2, tracked as CVE-2026-45411, allowing attackers to execute arbitrary commands on the host system by manipulating async generators to catch host exceptions, leading to remote code execution.

vm2 sandbox-escape rce

1r 2t 1c 2m ago

Cpe:2.3:a:vm2_project:vm2:*:*:*:*:*:node.js:*:*

VM2 Sandbox Breakout via Async Generator

Cpe:2.3:a:vm2_project:vm2:::*:::node.js::