Security News vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution TheHackerNews Daniel Bender 07 May 2026 Share 12 vm2 flaws (CVSS up to 10.0) enable sandbox escape in ≤3.11.1, causing remote code execution risk; patched in 3.11.2.
