See the full list of npm packages compromised in the "TanStack Supply Chain Compromise - May 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Out-of-bounds ReadCVE-2026-32284
Affects github.com/shamaton/msgpack/v3/internal/decoding | Versions <3.1.1
Has fix
GoPublished 14 May 2026
- H
Out-of-bounds ReadCVE-2026-32284
Affects github.com/shamaton/msgpack/v3/time | Versions <3.1.1
Has fix
GoPublished 14 May 2026
- H
Out-of-bounds ReadCVE-2026-32284
Affects github.com/shamaton/msgpack/v2/internal/decoding | Versions <2.4.1
Has fix
GoPublished 14 May 2026
- H
Out-of-bounds ReadCVE-2026-32284
Affects github.com/shamaton/msgpack/v2/time | Versions <2.4.1
Has fix
GoPublished 14 May 2026
Affects github.com/shamaton/msgpack/v3/internal/decoding | Versions <3.1.1
Has fix
GoPublished 14 May 2026
Affects github.com/shamaton/msgpack/v3/time | Versions <3.1.1
Has fix
GoPublished 14 May 2026
Affects github.com/shamaton/msgpack/v2/time | Versions <2.4.1
Has fix
GoPublished 14 May 2026
Affects github.com/shamaton/msgpack/v2/internal/decoding | Versions <2.4.1
Has fix
GoPublished 14 May 2026
- H
Improper Verification of Cryptographic SignatureCVE-2026-33467
Affects github.com/elastic/package-registry/packages | Versions <1.38.0
Has fix
GoPublished 14 May 2026
- M
Access Control BypassCVE-2026-44774
Affects github.com/traefik/traefik/v3/pkg/provider/kubernetes/gateway | Versions <3.6.17>=3.7.0 <3.7.1
Has fix
GoPublished 14 May 2026
- M
Access Control BypassCVE-2026-44774
Affects github.com/traefik/traefik/v2/pkg/provider/kubernetes/gateway | Versions <2.11.46
Has fix
GoPublished 14 May 2026
- M
Access Control BypassCVE-2026-44774
Affects github.com/traefik/traefik/pkg/provider/kubernetes/gateway | Versions >=0.0.0
Has fix
GoPublished 14 May 2026
- M
Incorrect AuthorizationCVE-2026-42876
Affects github.com/external-secrets/external-secrets/apis/externalsecrets/v1 | Versions <2.4.1
Has fix
GoPublished 14 May 2026
- M
Incorrect AuthorizationCVE-2026-42876
Affects github.com/external-secrets/external-secrets/apis/externalsecrets/v1beta1 | Versions <2.4.1
Has fix
GoPublished 14 May 2026
Affects github.com/bufferzonecorp/go-stdlog | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/log-core | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/go-envconfig | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/go-stdlib-ext | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/go-retryablehttp | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/net-helper | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/go-metrics-sdk | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/config-loader | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/grpc-client | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
Affects github.com/bufferzonecorp/go-weather-sdk | Versions >=0.0.0
Has fix
GoPublished 13 May 2026
- M
Out-of-BoundsCVE-2026-8349
Affects github.com/omec-project/amf/util | Versions <2.2.0
Has fix
GoPublished 12 May 2026
- M
Out-of-BoundsCVE-2026-8349
Affects github.com/omec-project/amf/ngap | Versions <2.2.0
Has fix
GoPublished 12 May 2026
- M
Out-of-BoundsCVE-2026-8349
Affects github.com/omec-project/amf/metrics | Versions <2.2.0
Has fix
GoPublished 12 May 2026
- M
Out-of-BoundsCVE-2026-8349
Affects github.com/omec-project/amf/gmm | Versions <2.2.0
Has fix
GoPublished 12 May 2026
- H
Incorrect Behavior Order: Validate Before CanonicalizeCVE-2026-45022
Affects github.com/go-git/go-git/v5/plumbing/object | Versions <5.19.0
Has fix
GoPublished 11 May 2026
- H
Incorrect Behavior Order: Validate Before CanonicalizeCVE-2026-45022
Affects github.com/go-git/go-git/v6/plumbing/object | Versions <6.0.0-alpha.3
Has fix
GoPublished 11 May 2026