VIR Vulnerability Intelligence Relay

Package impact

npm npm / @tanstack/router-devtools-core

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-45321 critical 9.6 10.0 16d ago Malware in @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys npm