vm2 was not properly handling host objects passed to `Error.prepareStackTrace` in case of unhandled async errors.- vm2 version: ~3.9.14- Node version: 18.15.0, 19.8.1, 17.9.1### ImpactA threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox.### PatchesThis vulnerability was patched in the release of version `3.9.15` of `vm2`.### WorkaroundsNone.