CVE-2026-48995
HIGHpnpm: Tarball hash of GitHub git dependencies is not stored in lockfile
Title source: cnaDescription
pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whatever tarball it wants and pnpm will install it regardless of the lockfile. The lockfile does not store the hash of the dependencies from https://codeload.github.com. This means that if this server was compromised or a person's machine configuration was compromised, pnpm would download and install these dependencies. This vulnerability is fixed in 10.33.4 and 11.0.7.
References (1)
Core 1
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/pnpm/pnpm/security/advisories/GHSA-hg3w-7f8c-63hp
Scores
CVSS v3
7.5
EPSS
0.0012
EPSS Percentile
1.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-353
Status
published
Products (4)
npm/pnpm
0 - 10.33.4npm
npm/pnpm
11.0.0 - 11.0.7npm
pnpm/pnpm
< 10.33.4 (2 CPE variants)
pnpm/pnpm
>= 11.0.0, < 11.0.7
Published
Jun 25, 2026
Tracked Since
Jun 25, 2026