VIR Vulnerability Intelligence Relay

Package impact

npm npm / vm2

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-44003 medium 5.8 5.8 15d ago vm2's Transformer Fast-Path Bypass Exposes Internal State Variable npm
CVE-2026-44002 medium 5.8 5.8 15d ago vm2 is Vulnerable to Host File Path Disclosure via Stack Trace Information Leak npm