A vulnerability labeled as critical has been found in tamagui up to 2.3.0. This affects the function
updateConfig of the file code/core/web/src/config.ts. Such manipulation leads to improperly controlled modification of object prototype attributes.
This vulnerability is listed as CVE-2026-15702. The attack may be performed from remote. In addition, an exploit is available.
The affected component should be upgraded.