Vulnerability Description
pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whatever tarball it wants and pnpm will install it regardless of the lockfile. The lockfile does not store the hash of the dependencies from https://codeload.github.com. This means that if this server was compromised or a person's machine configuration was compromised, pnpm would download and install these dependencies. This vulnerability is fixed in 10.33.4 and 11.0.7.
Related Weaknesses (CWE)
References
- https://github.com/pnpm/pnpm/security/advisories/GHSA-hg3w-7f8c-63hp
- https://github.com/pnpm/pnpm/security/advisories/GHSA-hg3w-7f8c-63hp
FAQ
What is CVE-2026-48995?
CVE-2026-48995 is a documented vulnerability. pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whatever tarball it wants and pnpm will install it regardless of the lockfile. The lockfile doe...
How severe is CVE-2026-48995?
CVSS scoring is not yet available for CVE-2026-48995. Check NVD for updates.
Is there a patch for CVE-2026-48995?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.