Description
pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. This vulnerability is Windows-only. This issue impacts Windows pnpm users and Windows CI/CD pipelines (GitHub Actions Windows runners, Azure DevOps). It can lead to overwriting `.npmrc`, build configs, or other files. Version 10.28.1 contains a patch.
Published: 2026-01-26
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary file overwrite on Windows that may enable code execution
Action: Apply Patch
AI Analysis

Impact

A path traversal flaw in pnpm’s tarball extraction process allows malicious packages to write files outside the intended package directory on Windows. The path normalization logic only checks for the Unix‐style "." prefix, ignoring the backslash used on Windows; this oversight lets an attacker include file paths that escape the package boundary and overwrite critical files such as ".npmrc" or build configuration files, potentially leading to privilege escalation or arbitrary code execution.

Affected Systems

pnpm users running on Windows and Windows‑based CI/CD environments, including GitHub Actions Windows runners and Azure DevOps pipelines, using version 10.28.0 or earlier. The vulnerability does not affect other operating systems.

Risk and Exploitability

The CVSS score of 6.5 reflects moderate severity, and the EPSS score of less than 1% suggests a low likelihood of exploitation at this time. The vulnerability is not listed in the CISA KEV catalogue. An attacker can exploit this flaw by introducing a malicious package into a locally built or CI‑driven project on a Windows machine, thereby gaining the ability to overwrite arbitrary files on the host.

Generated by OpenCVE AI on April 18, 2026 at 14:59 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade pnpm to version 10.28.1 or later to apply the path traversal fix.
  • Restrict the use of pnpm to trusted package sources and validate tarball contents before extraction in CI/CD pipelines.
  • Run CI/CD agents with least privilege and omit write permissions to critical configuration directories when installing packages.

Generated by OpenCVE AI on April 18, 2026 at 14:59 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-6x96-7vc8-cm3p pnpm has Windows-specific tarball Path Traversal
History

Wed, 28 Jan 2026 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft
Microsoft windows
CPEs cpe:2.3:a:pnpm:pnpm:*:*:*:*:*:node.js:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft windows

Tue, 27 Jan 2026 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 27 Jan 2026 12:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Tue, 27 Jan 2026 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Pnpm
Pnpm pnpm
Vendors & Products Pnpm
Pnpm pnpm

Mon, 26 Jan 2026 22:15:00 +0000

Type Values Removed Values Added
Description pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. This vulnerability is Windows-only. This issue impacts Windows pnpm users, Windows CI/CD pipelines (GitHub Actions Windows runners, Azure DevOps), and those who can overwrite `.npmrc`, build configs, or other files. Version 10.28.1 contains a patch. pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. This vulnerability is Windows-only. This issue impacts Windows pnpm users and Windows CI/CD pipelines (GitHub Actions Windows runners, Azure DevOps). It can lead to overwriting `.npmrc`, build configs, or other files. Version 10.28.1 contains a patch.

Mon, 26 Jan 2026 22:00:00 +0000

Type Values Removed Values Added
Description pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. This vulnerability is Windows-only. This issue impacts Windows pnpm users, Windows CI/CD pipelines (GitHub Actions Windows runners, Azure DevOps), and those who can overwrite `.npmrc`, build configs, or other files. Version 10.28.1 contains a patch.
Title pnpm has Windows-specific tarball Path Traversal
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}

Subscriptions

Microsoft Windows
Pnpm Pnpm
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-01-27T21:40:36.271Z

Reserved: 2026-01-16T21:02:02.902Z

Link: CVE-2026-23889

cve-icon Vulnrichment

Updated: 2026-01-27T21:40:31.773Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-26T22:15:56.213

Modified: 2026-01-28T17:33:40.743

Link: CVE-2026-23889

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-01-26T21:50:55Z

Links: CVE-2026-23889 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T15:00:03Z

Weaknesses