CVE-2026-44002

Name of the Vulnerable Software and Affected Versions vm2 versions prior to 3.11.0

Description The CallSite wrapper class, designed as a safe wrapper for V8's native CallSite, fails to sanitize the output of the getFileName() function. While the class blocks getThis() and getFunction() to prevent host object leakage, getFileName() can return unsanitized absolute paths from the host. This allows sandboxed code to extract the host server's full directory structure, library paths, and framework versions. This information disclosure can occur via the default error.stack or by using a custom prepareStackTrace to call getFileName() on each CallSite.

Recommendations Update to version 3.11.0.