CVE-2026-27597

Name of the Vulnerable Software and Affected Versions Enclave versions prior to 2.11.1

Description Enclave is a secure JavaScript sandbox used for safe AI agent code execution. A critical security flaw exists in versions prior to 2.11.1, allowing an attacker to escape the sandbox boundaries and achieve remote code execution (RCE) on the underlying host system. This is possible due to the ability to obtain the native Object constructor, allowing access to restricted properties and host functions. Two proof-of-concept exploits are described, one leveraging host memory track when a memory limit is set, and another utilizing Node's nodejs.util.inspect.custom symbol when a memory limit is not set. Successful exploitation results in arbitrary command execution on the host, representing a full system compromise.

Recommendations Upgrade to version 2.11.1 or later immediately.