CISA KEV: TanStack TanStack — TanStack Unspecified Vulnerability

Wednesday, May 27, 2026 at 12:00 AM UTC·Source: CISA KEV

Updated: Wednesday, May 27, 2026 at 06:00 PM UTC

Executive Summary

TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a trusted identity.

Analysis

TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a trusted identity. Added to CISA Known Exploited Vulnerabilities catalog on 2026-05-27. Remediation due: 2026-06-10.

Indicators of Compromise (1)

CVE (1)

CVE-2026-45321

NVD MITRE CVE

Source Attribution

Originally published by CISA KEV on May 27, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerability

Alberto Daniel Hill’s Cybermidnight Coverage of the Latin American Digital Sovereignty Crisis (March–June 2026)

Alberto Daniel Hill’s report is a must-read for anyone who wants to begin to understand what is going on in Argentina, Uruguay, and Mexico with respect to digital security. One of the many limitations of being a solo blogger is that there are entire areas of the world or sectors I basically know nothing about... Source

1h agoDataBreaches.net

MEDIUMVulnerability

Why Firms Struggle With Vendor Security After They Sign

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/healthcare-firms-struggle-ongoing-vendor-oversight-image_small-9-a-31826.jpg" align=right hspace=4>Study: Monitoring Vendor Risk Remains Much Harder Than Onboarding Third Parties Healthcare organizations are getting better vetting third-party vendors, including suppliers of medical devices, software and other products. B

3h agoBank Info Security

LOWVulnerability

Rapid7 Names Wael Mohamed CEO Amid Ongoing Growth Struggles

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/rapid7-names-wael-mohamed-ceo-amid-ongoing-growth-struggles-image_small-2-a-31830.jpg" align=right hspace=4>Former Forescout CEO, Trend Micro COO Mohamed Succeeds Corey Thomas After 13 Years Rapid7 has appointed former Forescout CEO Wael Mohamed as chief executive, betting that a renewed focus on AI-driven security opera

3h agoBank Info Security