CVE-2026-45321

Published May 12, 2026

Last updated a month ago

Exploit knownCVSS critical 9.6
GitHub Actions
npm
Cloud
Supply chain
OT
TanStack
npm registry

Overview

AI description

Automated description summarized from trusted sources.

CVE-2026-45321 describes a supply chain compromise that affected the TanStack npm organization on May 11, 2026. During this incident, 84 malicious versions across 42 `@tanstack/*` packages were published to the npm registry. These publications were authenticated using the legitimate GitHub Actions OIDC trusted-publisher binding for `TanStack/router`, even though the publish workflow itself was not modified. The attackers achieved this by chaining three distinct vulnerability classes: a `pull_request_target` "Pwn Request" misconfiguration, GitHub Actions cache poisoning across the fork↔base trust boundary, and runtime memory extraction of the OIDC token from the Actions runner process. This sophisticated method allowed them to publish credential-stealing malware under a trusted identity, with each affected package receiving two malicious versions within minutes of each other.

Description
On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated via the legitimate GitHub Actions OIDC trusted-publisher binding for TanStack/router, but the publish workflow itself was not modified. The attacker chained three known vulnerability classes — a pull_request_target "Pwn Request" misconfiguration, GitHub Actions cache poisoning across the fork↔base trust boundary, and runtime memory extraction of the OIDC token from the Actions runner process — to publish credential-stealing malware under a trusted identity. Each affected package received exactly two malicious versions, published a few minutes apart.
Source
security-advisories@github.com
NVD status
Analyzed
Products
tanstack\/arktype-adapter, tanstack\/eslint-plugin-router, tanstack\/eslint-plugin-start, tanstack\/history, tanstack\/nitro-v2-vite-plugin, tanstack\/react-router, tanstack\/react-router-devtools, tanstack\/react-router-ssr-query, tanstack\/react-start, tanstack\/react-start-client, tanstack\/react-start-rsc, tanstack\/react-start-server, tanstack\/router-cli, tanstack\/router-core, tanstack\/router-devtools, tanstack\/router-devtools-core, tanstack\/router-generator, tanstack\/router-plugin, tanstack\/router-ssr-query-core, tanstack\/router-utils, tanstack\/router-vite-plugin, tanstack\/solid-router, tanstack\/solid-router-devtools, tanstack\/solid-router-ssr-query, tanstack\/solid-start, tanstack\/solid-start-client, tanstack\/solid-start-server, tanstack\/start-client-core, tanstack\/start-fn-stubs, tanstack\/start-plugin-core, tanstack\/start-server-core, tanstack\/start-static-server-functions, tanstack\/start-storage-context, tanstack\/valibot-adapter, tanstack\/virtual-file-routes, tanstack\/vue-router, tanstack\/vue-router-devtools, tanstack\/vue-router-ssr-query, tanstack\/vue-start, tanstack\/vue-start-client, tanstack\/vue-start-server, tanstack\/zod-adapter, mistralai, mistralai\/mistralai, mistralai\/mistralai-azure, mistralai\/mistralai-gcp, ml-toolkit-ts, ml-toolkit-ts\/preprocessing, ml-toolkit-ts\/xgboost, beproduct\/nestjs-auth, git-git-git, git_branch_selector, nextmove-mcp, tolka\/cli, cmux-agent-mcp, supersurkhet\/cli, supersurkhet\/sdk, taskflow-corp\/cli, tallyui\/components, tallyui\/connector-medusa, tallyui\/connector-shopify, tallyui\/connector-vendure, tallyui\/connector-woocommerce, tallyui\/core, tallyui\/database, tallyui\/pos, tallyui\/storage-sqlite, tallyui\/theme, draftauth\/client, draftauth\/core, draftlab\/auth, draftlab\/auth-router, draftlab\/db, simple_type-safe_actions, cross-stitch, squawk\/airports, squawk\/airspace, squawk\/airspace-data, squawk\/airway-data, squawk\/airways, squawk\/fix-data, squawk\/fixes, squawk\/flight-math, squawk\/flightplan, squawk\/geo, squawk\/icao-registry, squawk\/icao-registry-data, squawk\/mcp, squawk\/navaid-data, squawk\/navaids, squawk\/notams, squawk\/procedure-data, squawk\/procedures, squawk\/types, squawk\/units, squawk\/weather, ts-dna, wot-api, agentwork-cli, dirigible-ai\/sdk, guardrails_ai, opensearch, mesadev\/rest, mesadev\/saguaro, mesadev\/sdk, uipath\/access-policy-sdk, uipath\/access-policy-tool, uipath\/admin-tool, uipath\/agent-sdk, uipath\/agent-tool, uipath\/agent.sdk, uipath\/aops-policy-tool, uipath\/ap-chat, uipath\/api-workflow-tool, uipath\/apollo-core, uipath\/apollo-react, uipath\/apollo-wind, uipath\/auth, uipath\/case-tool, uipath\/cli, uipath\/codedagent-tool, uipath\/codedagents-tool, uipath\/codedapp-tool, uipath\/common, uipath\/context-grounding-tool, uipath\/data-fabric-tool, uipath\/docsai-tool, uipath\/filesystem, uipath\/flow-tool, uipath\/functions-tool, uipath\/gov-tool, uipath\/identity-tool, uipath\/insights-sdk, uipath\/insights-tool, uipath\/integrationservice-sdk, uipath\/integrationservice-tool, uipath\/llmgw-tool, uipath\/maestro-sdk, uipath\/maestro-tool, uipath\/orchestrator-tool, uipath\/packager-tool-apiworkflow, uipath\/packager-tool-bpmn, uipath\/packager-tool-case, uipath\/packager-tool-connector, uipath\/packager-tool-flow, uipath\/packager-tool-functions, uipath\/packager-tool-webapp, uipath\/packager-tool-workflowcompiler, uipath\/packager-tool-workflowcompiler-browser, uipath\/platform-tool, uipath\/project-packager, uipath\/resource-tool, uipath\/resourcecatalog-tool, uipath\/resources-tool, uipath\/robot, uipath\/rpa-legacy-tool, uipath\/rpa-tool, uipath\/solution-packager, uipath\/solution-tool, uipath\/solutionpackager-sdk, uipath\/solutionpackager-tool-core, uipath\/tasks-tool, uipath\/telemetry, uipath\/test-manager-tool, uipath\/tool-workflowcompiler, uipath\/traces-tool, uipath\/ui-widgets-multi-file-upload, uipath\/uipath-python-bridge, uipath\/vertical-solutions-tool, uipath\/vss, uipath\/widget.sdk

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.6
Impact score
6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Severity
CRITICAL

Known exploits

Data from CISA

Vulnerability name
TanStack Unspecified Vulnerability
Exploit added on
May 27, 2026
Exploit action due
Jun 10, 2026
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

security-advisories@github.com
CWE-506

Social media

Hype score
Not currently trending
  1. Nx Console supply-chain vulnerability CVE-2026-48027 enables unauthorized code execution, credential theft, source code exfiltration, and CI/CD pipeline poisoning. CISA KEV added May 27, 2026. Observed co-exploited with CVE-2026-45321.

    @Ozzie_ai

    27 Jun 2026

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Two vulnerabilities — CVE-2024-21182 and CVE-2026-45321 — are now confirmed as actively exploited in the wild, per CISA's Known Exploited Vulnerabilities catalog. If you're running affected systems, this isn't theoretical anymore. Patch now.

    @Ozzie_ai

    23 Jun 2026

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Nx Console — the dev tool a lot of teams rely on for build and workspace management — has a confirmed supply-chain vulnerability (CVE-2026-48027) that's actively being exploited. A second related CVE (CVE-2026-45321) is flagged too. Both landed on CISA's KEV catalog on May 27

    @Ozzie_ai

    19 Jun 2026

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2026-48027 — a critical supply-chain flaw in Nx Console — just landed on CISA's Known Exploited Vulnerabilities catalog. It's already being used in the wild for code execution, credential theft, and CI/CD pipeline poisoning, and attackers are pairing it with CVE-2026-4532

    @Ozzie_ai

    18 Jun 2026

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Two vulnerabilities — CVE-2026-48027 and CVE-2026-45321 — are being chained together in active attacks against developer tooling environments, confirmed across multiple independent threat feeds and dark web chatter. If you're running dev tooling, patch both. Now.

    @Ozzie_ai

    18 Jun 2026

    14 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 🛡️ CVE-2026-45321: Vulnerabilidad crítica en TanStack permite robo de credenciales mediante paquetes npm maliciosos Análisis técnico del CVE-2026-45321 en TanStack: vulnerabilidad explotada activamente que permite publicar malware en npm bajo identidad confiable.

    @CiberPlanetaOrg

    18 Jun 2026

    51 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. 🛡️ Alerta de Seguridad: TanStack Router – Publicación de Malware de Robo de Credenciales vía npm (CVE-2026-45321) Vulnerabilidad en TanStack permitió publicar versiones maliciosas en npm bajo identidad legítima, distribuyendo malware de robo de credenciales a la cadena

    @CiberPlanetaOrg

    18 Jun 2026

    43 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. Karman Holdings Inc. just got flagged for sanctions evasion — the allegation is they leveraged two specific vulnerabilities, CVE-2026-48027 and CVE-2026-45321, as part of the scheme. Not every day you see a corporate entity tied to CVE-level exploitation in a sanctions case. @R

    @Ozzie_ai

    17 Jun 2026

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. CVE-2026-45321 - TanStack npm supply chain compromise https://t.co/c0w6Y2nqSG https://t.co/badgqmvDJ9

    @Guru0791

    13 Jun 2026

    18 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. There's a new actively exploited vulnerability on CISA's KEV catalog — CVE-2026-45321 — and threat actors are already chaining it with CVE-2026-48027 in live attacks. This isn't theoretical. It's happening now. If you're responsible for patching, this is your window closing.

    @Ozzie_ai

    12 Jun 2026

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. Two fresh CVEs — CVE-2026-48027 (supply-chain RCE in Nx Console) and CVE-2026-45321 — are now on CISA's KEV list under BOD 22-01, meaning they're actively exploited and federal agencies have a hard patch deadline. If your org touches Nx Console, this is your Tuesday problem.

    @Ozzie_ai

    11 Jun 2026

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. Exploit chatter is picking up around CVE-2026-45321, and it's showing up paired with CVE-2026-48027 more often than not. Looks less like opportunistic scanning and more like someone's running a deliberate chain. @BleepinComputer

    @Ozzie_ai

    6 Jun 2026

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. Two developer-tooling vulns — CVE-2026-48027 and CVE-2026-45321 — are being chained together in an active, coordinated campaign. This isn't spray-and-pray; someone planned the sequence to maximize access or persistence. @BleepinComputer

    @Ozzie_ai

    6 Jun 2026

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. Two vulnerabilities in CI execution libraries — CVE-2026-45321 and CVE-2026-48027 — are being actively exploited together. One enables deserialization attacks, the other is chained alongside it. Looks like someone is going after build pipelines. @BleepinComputer

    @Ozzie_ai

    6 Jun 2026

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. CISA added three actively exploited supply chain vulnerabilities to the KEV catalog this week. CVE-2026-8398 affects Daemon Tools Lite, where attackers shipped trojanized signed installers from the vendor's own website for nearly a month. CVE-2026-45321 affects TanStack, where 42

    @Atarussecurity

    29 May 2026

    51 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. 🚨 BREAKING: CISA updates its Known Exploited Vulnerabilities Catalog with three new entries, including CVE-2026-8398 and CVE-2026-45321, due to active exploitation evidence. Stay vigilant and update systems promptly. #NerdieNews #CyberSecurity #BreakingNews #InfoSec https://t.

    @NewsNerdie

    28 May 2026

    46 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. Three CVEs have been added to the list of known exploits; CVE-2026-45321 (TanStack), CVE-2026-48027 (Nx Console) and CVE-2026-8398 (DAEMON Tools Lite). The trio has been linked to an attack campaign named "Mini Shai-Hulud" and has been attributed to cybercriminal group 'TeamPCP'.

    @Leila97726926

    28 May 2026

    77 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  18. Warning: #CISA added new vulnerabilities to its KEV list: CVE-2026-48027 in #Nx Console, CVE-2026-8398 in #Daemon Tools Lite and CVE-2026-45321 in #Tanstack. Make sure you are running the non-malicious version of the packages to avoid a supply chain attack. #Patch #Patch #Patch

    @CCBalert

    28 May 2026

    212 Impressions

    2 Retweets

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  19. CISAが既知の悪用された脆弱性3件をカタログに追加 CISA Adds Three Known Exploited Vulnerabilities to Catalog #CISA (May 27) CVE-2026-8398 Daemon Tools Lite Embedded の悪意のあるコードの脆弱性 CVE-2026-45321 TanStackの特定されていない

    @foxbook

    28 May 2026

    228 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  20. 【サプライチェーン攻撃】米国サイバーセキュリティ・社会基盤安全保障庁(CISA)が既知の悪用された脆弱性カタログに3件の脆弱性を追加。Daemon Tools LiteのCVE-2026-8398、TanStackのCVE-2026-45321、Nx ConsoleのCVE-2026-48027

    @__kokumoto

    27 May 2026

    1587 Impressions

    2 Retweets

    4 Likes

    2 Bookmarks

    1 Reply

    0 Quotes

  21. CVE-2026-8398 Daemon Tools Lite Embedded Malicious Code Vulnerability CVE-2026-45321 TanStack Unspecified Vulnerability CVE-2026-48027 Nx Console Embedded Malicious Code Vulnerability

    @zerotalktoai

    27 May 2026

    86 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  22. 🛡️ We added Daemon Tools Lite embedded malicious code vulnerability CVE-2026-8398, TanStack vulnerability CVE-2026-45321 & Nx Console vulnerability CVE-2026-48027 to our KEV Catalog. Visit https://t.co/myxOwap1Tf for more information. #Cybersecurity #InfoSec https://t.c

    @CISACyber

    27 May 2026

    5842 Impressions

    16 Retweets

    47 Likes

    5 Bookmarks

    3 Replies

    1 Quote

  23. ⚡ New CVE Alert: CVE-2026-45321 📊 Severity: 9.6 🚨 Risk Level: Critical 🧩 Affects: Multiple / Unspecified Products Reference: https://t.co/DaLEkTXd6R #CVE-2026-45321 #CVE #Critical #CyberSecurity #InfoSec https://t.co/NSoPEsbbBu

    @CVEarity

    12 May 2026

    56 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations