Critical severityNVD Advisory· Published Feb 25, 2026· Updated Feb 25, 2026
@enclave-vm/core is vulnerable to Sandbox Escape
CVE-2026-27597
Description
Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to version 2.11.1, it is possible to escape the security boundraries set by @enclave-vm/core, which can be used to achieve remote code execution (RCE). The issue has been fixed in version 2.11.1.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@enclave-vm/corenpm | < 2.11.1 | 2.11.1 |
Affected products
1- Range: < 2.11.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-f229-3862-4942ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-27597ghsaADVISORY
- github.com/agentfront/enclave/commit/09afbebe4cb6d0586c1145aa71ffabd2103932dbmitrex_refsource_MISC
- github.com/agentfront/enclave/security/advisories/GHSA-f229-3862-4942ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.