CVE-2026-54328: Pi Agent: Predictable temporary extension install paths allow local privilege escalation on shared Linux hosts
A local attacker with access to the same host can exploit this only if a victim runs a vulnerable pi version with a temporary npm or git extension package source that maps to the attacker-prepared location. No network attack path is involved and no race must be won, but victim interaction is required.
Successful exploitation can allow arbitrary extension code execution as the victim user. This can expose or modify files accessible to that user and can also cause denial of service or data loss through malicious package contents or unsafe temporary cache entries.
References
- github.com/advisories/GHSA-jfgx-wxx8-mp94
- github.com/earendil-works/pi/commit/a98e087e5d08ea2a536bf73dbb0aebb87c3ef72e
- github.com/earendil-works/pi/commit/ea3465a8e371a12d0167a06b60f93878e3a3df44
- github.com/earendil-works/pi/pull/5345
- github.com/earendil-works/pi/releases/tag/v0.78.1
- github.com/earendil-works/pi/security/advisories/GHSA-jfgx-wxx8-mp94
- nvd.nist.gov/vuln/detail/CVE-2026-54328
Code Behaviors & Features
Detect and mitigate CVE-2026-54328 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →