{"vulnerability": "cve-2026-47140", "sightings": [{"uuid": "d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47140", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4", "content": "", "creation_timestamp": "2026-05-18T12:48:43.000000Z"}, {"uuid": "33b9f8de-495a-4b5b-984a-b7e2889d3273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moafs7cl3y2d", "content": "\ud83d\udd34 CVE-2026-47140 - Critical (10)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM blocks several dang...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47140/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T09:00:18.904620Z"}]}