External risk intelligence

pnpm Git Dependency Code Execution Vulnerability

CVE advisorySeverity: CRITICAL (CVSS 9.8)

CVE-2025-69264

pnpm is a command-line package manager used locally by developers or in build/CI/CD pipelines to install software dependencies. It is not a service that typically runs with public-facing network exposure, and its primary purpose is build-time processing within internal or developer-controlled environments.

Remote Code Execution

Pnpm

10.0.0 to before 10.26.0

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

External exposure likelihood

Horizon Alert

Summary of the vulnerability and why it matters

This advisory concerns a vulnerability in pnpm, a package manager used for Node.js applications. The issue allows malicious code to be executed during the installation of certain dependencies, bypassing security features designed to prevent this. This could potentially lead to unauthorized code execution on systems where affected versions of pnpm are used for dependency management. The primary concern is confirming relevance and exposure within your environments.

  • Malicious code can run during dependency installation.
  • Affects developers and build systems using pnpm.
  • Confirm if your development or build processes use pnpm.

Attack Path

How an attacker could exploit the issue

An attacker could exploit this vulnerability by tricking a user into installing a malicious package that uses a git-hosted dependency. This allows arbitrary code execution during the package installation process, bypassing security measures designed to prevent such actions. The vulnerability lies in how pnpm handles certain types of dependency scripts during the fetching phase.

  • No user interaction needed.
  • Malicious git-hosted dependency.
  • Arbitrary code execution.

Live Threat

Current exploitation, exposure, and threat context

When supported by the advisory, certain versions of pnpm could allow git-hosted dependencies to execute arbitrary code during the dependency installation process, bypassing a security feature designed to prevent script execution. This could occur during the fetch phase when adding or updating dependencies from git repositories.

  • Arbitrary code execution capability.
  • Git dependencies during installation.
  • System compromise and data theft.

Operational Fix

Recommended remediation, mitigation, and detection steps

This vulnerability impacts development and build environments where pnpm is used for dependency management. The primary responsibility for addressing this issue likely falls on development teams or platform engineering, who manage the development toolchain. The first practical step is to identify all systems and CI/CD pipelines utilizing affected pnpm versions, confirm their exposure to untrusted code sources, and then plan for remediation during the next maintenance window or as a high-priority update.

  • Development and platform teams own this.
  • Verify pnpm use in build/CI/CD.
  • Plan for dependency updates and testing.

Supplementary metadata

Validate whether this threat affects your internet-facing exposure.

Halo Threat Intelligence helps prioritize remediation with Halo Surface Signal and H/A/L/O context. Start exposure validation with a free external attack surface trial.

Frequently asked questions

What is pnpm and how is it used?

pnpm is a package manager designed for the Node.js ecosystem. Developers use it to install, manage, and organize the libraries and frameworks their applications depend on. It operates as a command-line tool, frequently running in developer workstations, local environments, and automated CI/CD pipelines to construct project environments.

How does CVE-2025-69264 affect security?

This vulnerability is classified as CWE-693: Protection Mechanism Failure. pnpm includes security features intended to block dependency scripts, but this bug allows git-hosted dependencies to circumvent those controls. During the fetch phase, these dependencies can execute arbitrary code, meaning a package installed by the user could automatically run unauthorized commands on the underlying system without approval.

Do I need a malicious interaction to trigger this?

The vulnerability is triggered automatically when pnpm installs a specially crafted git-hosted dependency. The issue occurs specifically during the fetch phase. It is important to note that standard packages that do not utilize git-hosted dependencies in this specific way do not trigger the flaw, and the issue is strictly tied to the handling of specific lifecycle scripts during that installation process.

Is my environment at risk of remote exploitation?

According to Halo Surface Signal, this is very unlikely. pnpm is a local command-line tool, not a network service. It typically lacks public-facing network exposure and is used inside developer workstations or private build pipelines. Risk is generally localized to environments that process untrusted or unverified code from external git repositories.

When should I update pnpm to fix this?

You should prioritize updating to pnpm version 10.26.0 or later as part of your regular maintenance. Start by auditing your build systems and developer tooling to identify where versions 10.0.0 through 10.25.x are in use. Once identified, schedule an update to the patched version to restore the intended security protections for dependency lifecycle scripts.

References