CVE-2026-45321

Summary

On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated via the legitimate GitHub Actions OIDC trusted-publisher binding for TanStack/router, but the publish workflow itself was not modified. The attacker chained three known vulnerability classes — a pull_request_target "Pwn Request" misconfiguration, GitHub Actions cache poisoning across the fork↔base trust boundary, and runtime memory extraction of the OIDC token from the Actions runner process — to publish credential-stealing malware under a trusted identity. Each affected package received exactly two malicious versions, published a few minutes apart.

Affected Software

VendorProductVersion RangeStatus
@tanstackarktype-adapter1.166.12affected
@tanstackarktype-adapter1.166.15affected
@tanstackeslint-plugin-router1.161.9affected
@tanstackeslint-plugin-router1.161.12affected
@tanstackeslint-plugin-start0.0.4affected
@tanstackeslint-plugin-start0.0.7affected
@tanstackhistory1.161.9affected
@tanstackhistory1.161.12affected
@tanstacknitro-v2-vite-plugin1.154.12affected
@tanstacknitro-v2-vite-plugin1.154.15affected
@tanstackreact-router1.169.5affected
@tanstackreact-router1.169.8affected
@tanstackreact-router-devtools1.166.16affected
@tanstackreact-router-devtools1.166.19affected
@tanstackreact-router-ssr-query1.166.15affected
@tanstackreact-router-ssr-query1.166.18affected
@tanstackreact-start1.167.68affected
@tanstackreact-start1.167.71affected
@tanstackreact-start-client1.166.51affected
@tanstackreact-start-client1.166.54affected
@tanstackreact-start-rsc0.0.47affected
@tanstackreact-start-rsc0.0.50affected
@tanstackreact-start-server1.166.55affected
@tanstackreact-start-server1.166.58affected
@tanstackrouter-cli1.166.46affected
@tanstackrouter-cli1.166.49affected
@tanstackrouter-core1.169.5affected
@tanstackrouter-core1.169.8affected
@tanstackrouter-devtools1.166.16affected
@tanstackrouter-devtools1.166.19affected
@tanstackrouter-devtools-core1.167.6affected
@tanstackrouter-devtools-core1.167.9affected
@tanstackrouter-generator1.166.45affected
@tanstackrouter-generator1.166.48affected
@tanstackrouter-plugin1.167.38affected
@tanstackrouter-plugin1.167.41affected
@tanstackrouter-ssr-query-core1.168.3affected
@tanstackrouter-ssr-query-core1.168.6affected
@tanstackrouter-utils1.161.11affected
@tanstackrouter-utils1.161.14affected
@tanstackouter-vite-plugin1.166.53affected
@tanstackouter-vite-plugin1.166.56affected
@tanstacksolid-router1.169.5affected
@tanstacksolid-router1.169.8affected
@tanstacksolid-router-devtools1.166.16affected
@tanstacksolid-router-devtools1.166.19affected
@tanstacksolid-router-ssr-query1.166.15affected
@tanstacksolid-router-ssr-query1.166.18affected
@tanstacksolid-start1.167.65affected
@tanstacksolid-start1.167.68affected
@tanstacksolid-start-client1.166.50affected
@tanstacksolid-start-client1.166.53affected
@tanstacksolid-start-server1.166.54affected
@tanstacksolid-start-server1.166.57affected
@tanstackstart-client-core1.168.5affected
@tanstackstart-client-core1.168.8affected
@tanstackstart-fn-stubs1.161.9affected
@tanstackstart-fn-stubs1.161.12affected
@tanstackstart-plugin-core1.169.23affected
@tanstackstart-plugin-core1.169.26affected
@tanstackstart-server-core1.167.33affected
@tanstackstart-server-core1.167.36affected
@tanstackstart-static-server-functions1.166.44affected
@tanstackstart-static-server-functions1.166.47affected
@tanstackstart-storage-context1.166.38affected
@tanstackstart-storage-context1.166.41affected
@tanstackvalibot-adapter1.166.12affected
@tanstackvalibot-adapter1.166.15affected
@tanstackvirtual-file-routes1.161.10affected
@tanstackvirtual-file-routes1.161.13affected
@tanstackvue-router1.169.5affected
@tanstackvue-router1.169.8affected
@tanstackvue-router-devtools1.166.16affected
@tanstackvue-router-devtools1.166.19affected
@tanstackvue-router-ssr-query1.166.15affected
@tanstackvue-router-ssr-query1.166.18affected
@tanstackvue-start1.167.61affected
@tanstackvue-start1.167.64affected
@tanstackvue-start-client1.166.46affected
@tanstackvue-start-client1.166.49affected
@tanstackvue-start-server1.166.50affected
@tanstackvue-start-server1.166.53affected
@tanstackzod-adapter1.166.12affected
@tanstackzod-adapter1.166.15affected

Weaknesses

  • CWE-506: CWE-506: Embedded Malicious Code

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References