Known exploited
@tanstack
CVE published 2026-05-27
CVE-2026-45321
A critical-severity vulnerability in TanStack has been added to CISA's Known Exploited Vulnerabilities (KEV) catalog with confirmed known ransomware campaign use. The vulnerability is currently unspecified in publicly available details. CISA has established a remediation due date of June 10, 2026. Organizations should prioritize mitigation efforts in accordance with vendor guidance and applicable Binding [truncated]