The host is installed with vm2 before 3.9.11 and is prone to a sandbox escape vulnerability. A flaw is present in the application, which fails to properly handle issue in the sandbox protections. Successful exploitation could allow attackers to cause remote code execution.