{"vulnerability": "cve-2026-44001", "sightings": [{"uuid": "4eed8bdd-90a5-43f2-afcc-32e9cee21dc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44001", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mlthl3rm5l2q", "content": "\ud83d\udccc CVE-2026-44001 - vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, a sandbox escape vulnerability in vm2 v3.10.5 allows any sandboxed code to crash the ho... https://www.cyberhub.blog/cves/CVE-2026-44001", "creation_timestamp": "2026-05-14T18:37:07.923428Z"}, {"uuid": "43a2e26d-7074-4abc-96b0-6631280abc7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44001", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlrbn3ni6e2c", "content": "CVE-2026-44001 - vm2: Sandbox Escape via Promise Constructor Unhandled Rejection (Process Crash DoS)\nCVE ID : CVE-2026-44001\n \n Published : May 13, 2026, 6:16 p.m. | 2\u00a0hours, 9\u00a0minutes ago\n \n Description : vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, a sandbo...", "creation_timestamp": "2026-05-13T21:45:32.352989Z"}, {"uuid": "409fc812-c800-4832-9212-d6fc52357681", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44001", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-hw58-p9xv-2mjh", "content": "", "creation_timestamp": "2026-05-01T20:43:31.000000Z"}]}