{"vulnerability": "cve-2026-44005", "sightings": [{"uuid": "000fadfd-476f-40a0-9083-2a05f95366f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44005", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-vwrp-x96c-mhwq", "content": "", "creation_timestamp": "2026-05-01T20:42:00.000000Z"}, {"uuid": "f70df046-a752-454d-8a82-6f563e008079", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44005", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq75fzsvsz2q", "content": "CVE-2026-44005 - @rootio/vm2\nIf you're using Root's npm package and haven't updated vm2 recently, you may be at risk of a security issue. This issue has been fixed by Root in newer versions of vm2. We\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rootio #Rootnpm #CVE #infosec", "creation_timestamp": "2026-07-09T07:48:03.379114Z"}]}