CVE-2026-25533

CRITICAL SEVERITY

Vulnerability Description

Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to 2.10.1, the existing layers of security in enclave-vm are insufficient: The AST sanitization can be bypassed with dynamic property accesses, the hardening of the error objects does not cover the peculiar behavior or the vm module and the function constructor access prevention can be side-stepped by leveraging host object references. This vulnerability is fixed in 2.10.1.

Vulnerability Details

Published Date

February 05, 2026

Last Modified

February 09, 2026

CWE ID

CWE-835

Source

GitHub

Vendor

npm

Product

enclave-vm

External References

https://github.com/agentfront/enclave/security/advisories/GHSA-x39w-8vm5-5m3p
https://github.com/agentfront/enclave/commit/2fcf5da81e7e2578ede6f94cae4f379165426dca
https://github.com/advisories/GHSA-x39w-8vm5-5m3p

CVE-2026-25533

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment