VULNRABLE / Vulnerability / CVE-2026-48049
CVE-2026-48049
MEDIUM @hapi/inert GHSA
CVSS Score
5.5
Severity
MEDIUM
EPSS
0%
Source
GHSA
Summary
@hapi/inert has a static-file confinement bypass via sibling-prefix path
What this means
CVE-2026-48049 is a medium-severity vulnerability affecting @hapi/inert, rated CVSS 5.5. The EPSS model estimates a 0% probability of exploitation in the next 30 days. Published June 11, 2026.
View full advisory at GHSA →