CVE-2026-50573 - Vulnerability Details

- pnpm: Unsafe default behavior breaks integrity check

Description

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, `pnpm install` in non-frozen mode can accept new remote package content after detecting that the downloaded tarball does not match the integrity recorded in pnpm-lock.yaml. When a package is already locked with an integrity value, and the registry later serves different metadata and tarball content for the same package name and version, pnpm initially reports an integrity mismatch. However, plain pnpm install then performs a resolution repair, accepts the registry's new integrity, updates the lockfile, installs the new content, and exits successfully. This means the lockfile integrity check does not act as a hard stop by default. This vulnerability is fixed in 10.34.0 and 11.4.0.

Published: 2026-06-25

Score: 6.8 Medium

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

pnpm, a JavaScript package manager, had a flaw that allowed an integrity check bypass when installing in non‑frozen mode. If a package is locked with a specific integrity hash, a later registry response that contains different metadata and tarball content will initially trigger an integrity mismatch. However, pnpm automatically performs a resolution repair, accepts the new integrity, rewrites the lockfile, installs the new content, and exits normally. This means the lockfile integrity check is not a hard stop, permitting a malicious package to replace a trusted one without detection. The vulnerability can lead to supply‑chain compromise and potentially arbitrary code execution.

Affected Systems

pnpm version 10.33.x and earlier as well as pnpm 11.x versions prior to 11.4.0 are affected. Any installation that uses non‑frozen mode and relies on the lockfile integrity check is vulnerable.

Risk and Exploitability

The vulnerability has a CVSS score of 6.8, indicating a moderate severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, suggesting no widespread exploitation yet. The flaw requires a registry that can supply altered package metadata and tarball content, so an attacker controlling or compromising a registry can exploit it. Because the lockfile is automatically updated, the attack would be stealthy unless the attacker’s compromise is detected through other means.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

pnpm

affected

Version	Status	Constraints
`< 10.33.4`	affected	—
`>= 11.0.0, < 11.4.0`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade pnpm to 10.34.0 or later, or to 11.4.0 or later.
Run pnpm install with the --frozen-lockfile flag (or set freezeLockfile to true) to prevent automatic resolution repairs.
Use authenticated, trusted registries and regularly monitor lockfile changes for unexpected modifications.

Generated by OpenCVE AI on June 25, 2026 at 18:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://github.com/pnpm/pnpm/security/advisories/GHSA-54hh-g5mx-jqcp

History

Thu, 25 Jun 2026 18:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 25 Jun 2026 17:30:00 +0000

Type	Values Removed	Values Added
Description		pnpm is a package manager. Prior to 10.34.0 and 11.4.0, `pnpm install` in non-frozen mode can accept new remote package content after detecting that the downloaded tarball does not match the integrity recorded in pnpm-lock.yaml. When a package is already locked with an integrity value, and the registry later serves different metadata and tarball content for the same package name and version, pnpm initially reports an integrity mismatch. However, plain pnpm install then performs a resolution repair, accepts the registry's new integrity, updates the lockfile, installs the new content, and exits successfully. This means the lockfile integrity check does not act as a hard stop by default. This vulnerability is fixed in 10.34.0 and 11.4.0.
Title		pnpm: Unsafe default behavior breaks integrity check
Weaknesses		CWE-345
References		https://github.com/pnpm/pnpm/security/advisories/GHSA-54hh-g5mx-jqcp
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-06-25T16:50:21.093Z

Updated: 2026-06-25T17:54:52.221Z

Reserved: 2026-06-04T21:34:34.427Z

Link: CVE-2026-50573

Vulnrichment

Updated: 2026-06-25T17:54:48.775Z

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-25T18:30:14Z

Weaknesses

CWE-345
Insufficient Verification of Data Authenticity

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction Required

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object