A dozen critical security vulnerabilities have been disclosed
in the vm2 Node.js library that could be exploited by bad actors to
break out of the sandbox and execute arbitrary code on susceptible
systems. vm2 is an open-source library used to run untrusted
JavaScript code inside a secure sandbox by intercepting and
proxying JavaScript objects to prevent sandboxed code from
accessing the host
Read more https://thehackernews.com/2026/05/vm2-nodejs-library-vulnerabilities.html
