Description
The package vm2 before 3.9.10 are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to a host object and a sandbox compromise.
Remediation
References
https://github.com/patriksimek/vm2/issues/444
https://github.com/patriksimek/vm2/pull/445
https://github.com/patriksimek/vm2/pull/445/commits/3a9876482be487b78a90ac459675da7f83f46d69
https://security.snyk.io/vuln/SNYK-JS-VM2-2990237
Related Vulnerabilities
CVE-2020-28442 Vulnerability in maven package org.webjars.npm:js-data
CVE-2021-21626 Vulnerability in maven package io.jenkins.plugins:warnings-ng
CVE-2020-15156 Vulnerability in npm package nodebb-plugin-blog-comments
CVE-2023-37460 Vulnerability in maven package org.codehaus.plexus:plexus-archiver
CVE-2021-29444 Vulnerability in npm package jose-browser-runtime