Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/vm2@3.9.4
purl pkg:npm/vm2@3.9.4
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-tux1-cjy7-53bf Improperly Controlled Modification of Dynamically-Determined Object Attributes This affects the package vm2 via a Prototype Pollution attack vector, which can lead to execution of arbitrary code on the host machine. CVE-2021-23449

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:40:14.884233+00:00 GitLab Importer Fixing VCID-tux1-cjy7-53bf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/vm2/CVE-2021-23449.yml 38.6.0