VYPR
Important severity8.8NVD Advisory· Published Jun 25, 2026

pnpm: pnpm: Arbitrary code execution via malicious package-manager lockfile

CVE-2026-55698

Description

pnpm: pnpm: Arbitrary code execution via malicious package-manager lockfile

Affected products

2
  • Pnpm/Pnpminferred2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.