Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2026-45321

Summary
Assigner-GitHub_M
Assigner Org ID-a0819718-46f1-4df5-94e2-005712e83aaa
Published At-12 May, 2026 | 00:12
Updated At-28 May, 2026 | 03:55
Rejected At-
Credits

TanStack Unspecified Vulnerability

TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a trusted identity.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
â–¼Known Exploited Vulnerabilities (KEV)
cisa.gov
Vendor:
TanStack
Product:TanStack
Added At:27 May, 2026
Due At:10 Jun, 2026

TanStack Unspecified Vulnerability

TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a trusted identity.

Used in Ransomware

:

Known

CWE

:
N/A

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes:

This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx ; https://nvd.nist.gov/vuln/detail/CVE-2026-45321
â–¼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:GitHub_M
Assigner Org ID:a0819718-46f1-4df5-94e2-005712e83aaa
Published At:12 May, 2026 | 00:12
Updated At:28 May, 2026 | 03:55
Rejected At:
â–¼CVE Numbering Authority (CNA)
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys

On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated via the legitimate GitHub Actions OIDC trusted-publisher binding for TanStack/router, but the publish workflow itself was not modified. The attacker chained three known vulnerability classes — a pull_request_target "Pwn Request" misconfiguration, GitHub Actions cache poisoning across the fork↔base trust boundary, and runtime memory extraction of the OIDC token from the Actions runner process — to publish credential-stealing malware under a trusted identity. Each affected package received exactly two malicious versions, published a few minutes apart.

Affected Products
Vendor
@tanstack
Product
arktype-adapter
Versions
Affected
  • 1.166.12
  • 1.166.15
Vendor
@tanstack
Product
eslint-plugin-router
Versions
Affected
  • 1.161.9
  • 1.161.12
Vendor
@tanstack
Product
eslint-plugin-start
Versions
Affected
  • 0.0.4
  • 0.0.7
Vendor
@tanstack
Product
history
Versions
Affected
  • 1.161.9
  • 1.161.12
Vendor
@tanstack
Product
nitro-v2-vite-plugin
Versions
Affected
  • 1.154.12
  • 1.154.15
Vendor
@tanstack
Product
react-router
Versions
Affected
  • 1.169.5
  • 1.169.8
Vendor
@tanstack
Product
react-router-devtools
Versions
Affected
  • 1.166.16
  • 1.166.19
Vendor
@tanstack
Product
react-router-ssr-query
Versions
Affected
  • 1.166.15
  • 1.166.18
Vendor
@tanstack
Product
react-start
Versions
Affected
  • 1.167.68
  • 1.167.71
Vendor
@tanstack
Product
react-start-client
Versions
Affected
  • 1.166.51
  • 1.166.54
Vendor
@tanstack
Product
react-start-rsc
Versions
Affected
  • 0.0.47
  • 0.0.50
Vendor
@tanstack
Product
react-start-server
Versions
Affected
  • 1.166.55
  • 1.166.58
Vendor
@tanstack
Product
router-cli
Versions
Affected
  • 1.166.46
  • 1.166.49
Vendor
@tanstack
Product
router-core
Versions
Affected
  • 1.169.5
  • 1.169.8
Vendor
@tanstack
Product
router-devtools
Versions
Affected
  • 1.166.16
  • 1.166.19
Vendor
@tanstack
Product
router-devtools-core
Versions
Affected
  • 1.167.6
  • 1.167.9
Vendor
@tanstack
Product
router-generator
Versions
Affected
  • 1.166.45
  • 1.166.48
Vendor
@tanstack
Product
router-plugin
Versions
Affected
  • 1.167.38
  • 1.167.41
Vendor
@tanstack
Product
router-ssr-query-core
Versions
Affected
  • 1.168.3
  • 1.168.6
Vendor
@tanstack
Product
router-utils
Versions
Affected
  • 1.161.11
  • 1.161.14
Vendor
@tanstack
Product
outer-vite-plugin
Versions
Affected
  • 1.166.53
  • 1.166.56
Vendor
@tanstack
Product
solid-router
Versions
Affected
  • 1.169.5
  • 1.169.8
Vendor
@tanstack
Product
solid-router-devtools
Versions
Affected
  • 1.166.16
  • 1.166.19
Vendor
@tanstack
Product
solid-router-ssr-query
Versions
Affected
  • 1.166.15
  • 1.166.18
Vendor
@tanstack
Product
solid-start
Versions
Affected
  • 1.167.65
  • 1.167.68
Vendor
@tanstack
Product
solid-start-client
Versions
Affected
  • 1.166.50
  • 1.166.53
Vendor
@tanstack
Product
solid-start-server
Versions
Affected
  • 1.166.54
  • 1.166.57
Vendor
@tanstack
Product
start-client-core
Versions
Affected
  • 1.168.5
  • 1.168.8
Vendor
@tanstack
Product
start-fn-stubs
Versions
Affected
  • 1.161.9
  • 1.161.12
Vendor
@tanstack
Product
start-plugin-core
Versions
Affected
  • 1.169.23
  • 1.169.26
Vendor
@tanstack
Product
start-server-core
Versions
Affected
  • 1.167.33
  • 1.167.36
Vendor
@tanstack
Product
start-static-server-functions
Versions
Affected
  • 1.166.44
  • 1.166.47
Vendor
@tanstack
Product
start-storage-context
Versions
Affected
  • 1.166.38
  • 1.166.41
Vendor
@tanstack
Product
valibot-adapter
Versions
Affected
  • 1.166.12
  • 1.166.15
Vendor
@tanstack
Product
virtual-file-routes
Versions
Affected
  • 1.161.10
  • 1.161.13
Vendor
@tanstack
Product
vue-router
Versions
Affected
  • 1.169.5
  • 1.169.8
Vendor
@tanstack
Product
vue-router-devtools
Versions
Affected
  • 1.166.16
  • 1.166.19
Vendor
@tanstack
Product
vue-router-ssr-query
Versions
Affected
  • 1.166.15
  • 1.166.18
Vendor
@tanstack
Product
vue-start
Versions
Affected
  • 1.167.61
  • 1.167.64
Vendor
@tanstack
Product
vue-start-client
Versions
Affected
  • 1.166.46
  • 1.166.49
Vendor
@tanstack
Product
vue-start-server
Versions
Affected
  • 1.166.50
  • 1.166.53
Vendor
@tanstack
Product
zod-adapter
Versions
Affected
  • 1.166.12
  • 1.166.15
Problem Types
TypeCWE IDDescription
CWECWE-506CWE-506: Embedded Malicious Code
Type: CWE
CWE ID: CWE-506
Description: CWE-506: Embedded Malicious Code
Metrics
VersionBase scoreBase severityVector
3.19.6CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Version: 3.1
Base score: 9.6
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx
x_refsource_CONFIRM
https://github.com/TanStack/router/issues/7383
x_refsource_MISC
https://tanstack.com/blog/npm-supply-chain-compromise-postmortem
x_refsource_MISC
https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem
x_refsource_MISC
Hyperlink: https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx
Resource:
x_refsource_CONFIRM
Hyperlink: https://github.com/TanStack/router/issues/7383
Resource:
x_refsource_MISC
Hyperlink: https://tanstack.com/blog/npm-supply-chain-compromise-postmortem
Resource:
x_refsource_MISC
Hyperlink: https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem
Resource:
x_refsource_MISC
â–¼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
kev
dateAdded:
2026-05-27
reference:
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-45321
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
CVE-2026-45321 added to CISA KEV2026-05-27 00:00:00
Event: CVE-2026-45321 added to CISA KEV
Date: 2026-05-27 00:00:00
Replaced By

Rejected Reason

References
HyperlinkResource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-45321
government-resource
Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-45321
Resource:
government-resource
Information is not available yet
â–¼National Vulnerability Database (NVD)
nvd.nist.gov
Source:security-advisories@github.com
Published At:12 May, 2026 | 01:16
Updated At:29 May, 2026 | 19:41

On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated via the legitimate GitHub Actions OIDC trusted-publisher binding for TanStack/router, but the publish workflow itself was not modified. The attacker chained three known vulnerability classes — a pull_request_target "Pwn Request" misconfiguration, GitHub Actions cache poisoning across the fork↔base trust boundary, and runtime memory extraction of the OIDC token from the Actions runner process — to publish credential-stealing malware under a trusted identity. Each affected package received exactly two malicious versions, published a few minutes apart.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
2026-05-272026-06-10TanStack Unspecified VulnerabilityApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Date Added: 2026-05-27
Due Date: 2026-06-10
Vulnerability Name: TanStack Unspecified Vulnerability
Required Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.19.6CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 9.6
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
CPE Matches

tanstack
tanstack
>>tanstack\/arktype-adapter>>1.166.12
cpe:2.3:a:tanstack:tanstack\/arktype-adapter:1.166.12:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/arktype-adapter>>1.166.15
cpe:2.3:a:tanstack:tanstack\/arktype-adapter:1.166.15:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/eslint-plugin-router>>1.161.9
cpe:2.3:a:tanstack:tanstack\/eslint-plugin-router:1.161.9:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/eslint-plugin-router>>1.161.12
cpe:2.3:a:tanstack:tanstack\/eslint-plugin-router:1.161.12:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/eslint-plugin-start>>0.0.4
cpe:2.3:a:tanstack:tanstack\/eslint-plugin-start:0.0.4:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/eslint-plugin-start>>0.0.7
cpe:2.3:a:tanstack:tanstack\/eslint-plugin-start:0.0.7:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/history>>1.161.9
cpe:2.3:a:tanstack:tanstack\/history:1.161.9:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/history>>1.161.12
cpe:2.3:a:tanstack:tanstack\/history:1.161.12:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/nitro-v2-vite-plugin>>1.154.12
cpe:2.3:a:tanstack:tanstack\/nitro-v2-vite-plugin:1.154.12:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/nitro-v2-vite-plugin>>1.154.15
cpe:2.3:a:tanstack:tanstack\/nitro-v2-vite-plugin:1.154.15:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-router>>1.169.5
cpe:2.3:a:tanstack:tanstack\/react-router:1.169.5:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-router>>1.169.8
cpe:2.3:a:tanstack:tanstack\/react-router:1.169.8:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-router-devtools>>1.166.16
cpe:2.3:a:tanstack:tanstack\/react-router-devtools:1.166.16:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-router-devtools>>1.166.19
cpe:2.3:a:tanstack:tanstack\/react-router-devtools:1.166.19:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-router-ssr-query>>1.166.15
cpe:2.3:a:tanstack:tanstack\/react-router-ssr-query:1.166.15:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-router-ssr-query>>1.166.18
cpe:2.3:a:tanstack:tanstack\/react-router-ssr-query:1.166.18:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start>>1.167.68
cpe:2.3:a:tanstack:tanstack\/react-start:1.167.68:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start>>1.167.71
cpe:2.3:a:tanstack:tanstack\/react-start:1.167.71:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start-client>>1.166.51
cpe:2.3:a:tanstack:tanstack\/react-start-client:1.166.51:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start-client>>1.166.54
cpe:2.3:a:tanstack:tanstack\/react-start-client:1.166.54:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start-rsc>>0.0.47
cpe:2.3:a:tanstack:tanstack\/react-start-rsc:0.0.47:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start-rsc>>0.0.50
cpe:2.3:a:tanstack:tanstack\/react-start-rsc:0.0.50:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start-server>>1.166.55
cpe:2.3:a:tanstack:tanstack\/react-start-server:1.166.55:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/react-start-server>>1.166.58
cpe:2.3:a:tanstack:tanstack\/react-start-server:1.166.58:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-cli>>1.166.46
cpe:2.3:a:tanstack:tanstack\/router-cli:1.166.46:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-cli>>1.166.49
cpe:2.3:a:tanstack:tanstack\/router-cli:1.166.49:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-core>>1.169.5
cpe:2.3:a:tanstack:tanstack\/router-core:1.169.5:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-core>>1.169.8
cpe:2.3:a:tanstack:tanstack\/router-core:1.169.8:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-devtools>>1.166.16
cpe:2.3:a:tanstack:tanstack\/router-devtools:1.166.16:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-devtools>>1.166.19
cpe:2.3:a:tanstack:tanstack\/router-devtools:1.166.19:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-devtools-core>>1.167.6
cpe:2.3:a:tanstack:tanstack\/router-devtools-core:1.167.6:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-devtools-core>>1.167.9
cpe:2.3:a:tanstack:tanstack\/router-devtools-core:1.167.9:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-generator>>1.166.45
cpe:2.3:a:tanstack:tanstack\/router-generator:1.166.45:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-generator>>1.166.48
cpe:2.3:a:tanstack:tanstack\/router-generator:1.166.48:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-plugin>>1.167.38
cpe:2.3:a:tanstack:tanstack\/router-plugin:1.167.38:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-plugin>>1.167.41
cpe:2.3:a:tanstack:tanstack\/router-plugin:1.167.41:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-ssr-query-core>>1.168.3
cpe:2.3:a:tanstack:tanstack\/router-ssr-query-core:1.168.3:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-ssr-query-core>>1.168.6
cpe:2.3:a:tanstack:tanstack\/router-ssr-query-core:1.168.6:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-utils>>1.161.11
cpe:2.3:a:tanstack:tanstack\/router-utils:1.161.11:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-utils>>1.161.14
cpe:2.3:a:tanstack:tanstack\/router-utils:1.161.14:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-vite-plugin>>1.166.53
cpe:2.3:a:tanstack:tanstack\/router-vite-plugin:1.166.53:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/router-vite-plugin>>1.166.56
cpe:2.3:a:tanstack:tanstack\/router-vite-plugin:1.166.56:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-router>>1.169.5
cpe:2.3:a:tanstack:tanstack\/solid-router:1.169.5:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-router>>1.169.8
cpe:2.3:a:tanstack:tanstack\/solid-router:1.169.8:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-router-devtools>>1.166.16
cpe:2.3:a:tanstack:tanstack\/solid-router-devtools:1.166.16:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-router-devtools>>1.166.19
cpe:2.3:a:tanstack:tanstack\/solid-router-devtools:1.166.19:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-router-ssr-query>>1.166.15
cpe:2.3:a:tanstack:tanstack\/solid-router-ssr-query:1.166.15:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-router-ssr-query>>1.166.18
cpe:2.3:a:tanstack:tanstack\/solid-router-ssr-query:1.166.18:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-start>>1.167.65
cpe:2.3:a:tanstack:tanstack\/solid-start:1.167.65:*:*:*:*:node.js:*:*
tanstack
tanstack
>>tanstack\/solid-start>>1.167.68
cpe:2.3:a:tanstack:tanstack\/solid-start:1.167.68:*:*:*:*:node.js:*:*
Weaknesses
CWE IDTypeSource
CWE-506Secondarysecurity-advisories@github.com
CWE ID: CWE-506
Type: Secondary
Source: security-advisories@github.com
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://github.com/TanStack/router/issues/7383security-advisories@github.com
Issue Tracking
https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpxsecurity-advisories@github.com
Mitigation
Vendor Advisory
https://tanstack.com/blog/npm-supply-chain-compromise-postmortemsecurity-advisories@github.com
Exploit
Vendor Advisory
https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystemsecurity-advisories@github.com
Exploit
Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-45321134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource
Hyperlink: https://github.com/TanStack/router/issues/7383
Source: security-advisories@github.com
Resource:
Issue Tracking
Hyperlink: https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx
Source: security-advisories@github.com
Resource:
Mitigation
Vendor Advisory
Hyperlink: https://tanstack.com/blog/npm-supply-chain-compromise-postmortem
Source: security-advisories@github.com
Resource:
Exploit
Vendor Advisory
Hyperlink: https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem
Source: security-advisories@github.com
Resource:
Exploit
Third Party Advisory
Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-45321
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Resource:
US Government Resource

Change History

0
Information is not available yet

Similar CVEs

4Records found

CVE-2026-45758
Matching Score-10
Assigner-GitHub, Inc.
ShareView Details
Matching Score-10
Assigner-GitHub, Inc.
CVSS Score-9.6||CRITICAL
EPSS-0.28% / 19.37%
||
7 Day CHG~0.00%
Published-05 Jun, 2026 | 19:35
Updated-08 Jun, 2026 | 16:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Malicious code in guardrails-ai 0.10.1 (supply chain compromise)

Guardrails AI is a Python framework that helps build AI applications. On May 11, 2026 at approximately 6:00 PM Pacific, an attacker published a malicious version of `guardrails-ai` (0.10.1) to PyPI. Aany user who installed `guardrails-ai==0.10.1` from PyPI on May 11, 2026 may be affected. Security researchers identified the malicious package within approximately 2 hours of publication, and PyPI quarantined the repository. Based on our telemetry, Guardrails AI maintainers have observed no requests to Guardrails AI infrastructure originating from the malicious 0.10.1 version, and a review of system and access logs has produced no evidence of user data exfiltration through their systems. Users should upgrade to version 0.10.2 or downgrade to version 0.10.0, both of which are unaffected. Those who installed version 0.10.1 should rotate any credentials accessible from their machine (GitHub PATs, cloud provider keys, package registry tokens, API keys) and audit their GitHub account for unauthorized workflows or repositories.

Action-Not Available
Vendor-guardrailsaiguardrails-ai
Product-guardrails_aiguardrails
CWE ID-CWE-506
Embedded Malicious Code
CVE-2022-31105
Matching Score-8
Assigner-GitHub, Inc.
ShareView Details
Matching Score-8
Assigner-GitHub, Inc.
CVSS Score-8.3||HIGH
EPSS-0.64% / 45.98%
||
7 Day CHG~0.00%
Published-12 Jul, 2022 | 22:05
Updated-23 Apr, 2025 | 18:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Argo CD's certificate verification is skipped for connections to OIDC providers

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD starting with version 0.4.0 and prior to 2.2.11, 2.3.6, and 2.4.5 is vulnerable to an improper certificate validation bug which could cause Argo CD to trust a malicious (or otherwise untrustworthy) OpenID Connect (OIDC) provider. A patch for this vulnerability has been released in Argo CD versions 2.4.5, 2.3.6, and 2.2.11. There are no complete workarounds, but a partial workaround is available. Those who use an external OIDC provider (not the bundled Dex instance), can mitigate the issue by setting the `oidc.config.rootCA` field in the `argocd-cm` ConfigMap. This mitigation only forces certificate validation when the API server handles login flows. It does not force certificate verification when verifying tokens on API calls.

Action-Not Available
Vendor-argoprojargoprojThe Linux Foundation
Product-argo-cdargo_cdargo-cd
CWE ID-CWE-295
Improper Certificate Validation
CWE ID-CWE-599
Missing Validation of OpenSSL Certificate
CVE-2020-26290
Matching Score-8
Assigner-GitHub, Inc.
ShareView Details
Matching Score-8
Assigner-GitHub, Inc.
CVSS Score-9.3||CRITICAL
EPSS-0.98% / 57.83%
||
7 Day CHG~0.00%
Published-28 Dec, 2020 | 19:15
Updated-04 Aug, 2024 | 15:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Critical security issues in XML encoding in Dex

Dex is a federated OpenID Connect provider written in Go. In Dex before version 2.27.0 there is a critical set of vulnerabilities which impacts users leveraging the SAML connector. The vulnerabilities enables potential signature bypass due to issues with XML encoding in the underlying Go library. The vulnerabilities have been addressed in version 2.27.0 by using the xml-roundtrip-validator from Mattermost (see related references).

Action-Not Available
Vendor-dexidpThe Linux Foundation
Product-dexdex
CWE ID-CWE-347
Improper Verification of Cryptographic Signature
CVE-2025-10894
Matching Score-4
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-4
Assigner-Red Hat, Inc.
CVSS Score-9.6||CRITICAL
EPSS-0.53% / 40.74%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 21:20
Updated-20 Nov, 2025 | 07:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Nx: nx/devkit: malicious versions of nx and plugins published to npm

Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.

Action-Not Available
Vendor-Red Hat, Inc.
Product-Red Hat Ansible Automation Platform 2Multicluster Global HubRed Hat Advanced Cluster Management for Kubernetes 2OpenShift Serverless
CWE ID-CWE-506
Embedded Malicious Code
Details not found