Skip to main content
Loading…
    CVE-2026-43999 — vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, NodeVM's builtin allowlist can be bypassed when the module builtin is allowed (including via the '*' wildcard). The module bu — CVE Database · The Intelligence Room