vm2 sandbox flaws prompt urgent update to version 3.11.2

7 articles · Updated · InfoWorld · May 8

Maintainer Patrik Simek disclosed 13 critical bugs, including CVE-2026-26956 and CVE-2026-44007, that can let attacker-supplied JavaScript escape and run host commands.
Researchers said the first flaw is narrower, confirmed on Node.js 25.6.1 with WebAssembly exception handling, while the NodeVM nesting:true issue may affect more deployments and was fixed in 3.11.1.
Experts warned vm2 should not be treated as a hard security boundary; until patched, organisations should avoid Node 25, block untrusted WebAssembly and consider stronger isolation such as containers or V8 Isolates.

Does the vm2 exploit reveal a systemic supply chain risk for millions of apps?

Can the V8 engine be hardened to prevent all future sandbox escapes?

Are software sandboxes now obsolete for securing untrusted AI-generated code?