Description
Anchor is a framework providing several convenient developer tools for writing Solana programs. From 1.0.0 to before 1.0.2, an logic error causes anchor programs to accept any program id when requiring the system program id, causing false assumptions resulting in potential arbitrary cpi in programs that invoke system program instructions. In the TryFrom<&'a AccountInfo<'a>> implementation for Program<'a, T>, the id of T is compared with Pubkey::default() to check whether anchor should allow any executable account, or a specific account, because when no T is supplied, T defaults to (), which implements Id::id() by returning Pubkey::default(). This results in T = () and T = System (which has Pubkey::default() as the id) having the same behavior, both allow any executable account. Programs built with anchor assume that the anchor runtime verifies passed in programs of type Program<'a, System> are in fact the system program. This false assumption can lead to arbitrary CPI or payment bypassing when programs try making CPI calls to the system program using the passed in system program due to the fact that the attacker can pass in any program instead of the system program. This vulnerability is fixed in 1.0.2.
Published: 2026-05-27
Score: 8.2 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability in the Anchor framework stems from a logic error in versions 1.0.0 through 1.0.1 that allows any executable account to be treated as the Solana system program. The code compares a program’s identifier with a default public key rather than the true system program ID, enabling the false assumption that a passed-in program of type Program<'info, System> is, in fact, the system program. Attackers can exploit this by providing a different program address, thereby causing the vulnerable program to perform unintended cross‑program invocations (CPI) or bypass expected payment logic. This flaw can be leveraged to execute arbitrary code or to divert funds without the program’s author’s consent.

Affected Systems

Solana Foundation’s Anchor framework is affected in all releases from the initial 1.0.0 up to (but excluding) 1.0.2. Users building Solana programs with these versions of Anchor are vulnerable unless the framework has been upgraded.

Risk and Exploitability

The CVSS score of 8.2 indicates a high severity of the flaw. Although the EPSS score is not available, the vulnerability is not listed in CISA’s KEV catalog, indicating no pre‑existing verified exploits have been documented to date. The likely attack vector requires an attacker to supply a custom program that targets a vulnerable Anchor‑based program, taking advantage of the unchecked identity of the system program reference. If both a malicious program and the vulnerable code are under the attacker’s control, they can orchestrate arbitrary CPI or payment bypasses exactly as the system program would be expected to perform.

Generated by OpenCVE AI on May 27, 2026 at 22:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Anchor framework to version 1.0.2 or later and recompile all dependent programs.
  • Add explicit runtime checks in your Anchor programs to confirm that any Program<'info, System> instance matches the known system program public key before invoking CPI or performing account modifications.
  • If an immediate upgrade is not possible, review and modify the program logic so that it does not rely on the type system for system program verification, instead performing explicit validation of any program ID used in CPI calls.

Generated by OpenCVE AI on May 27, 2026 at 22:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-c6rc-8jpp-2fgc Anchor: Program<'info, System> is not properly validated
History

Wed, 27 May 2026 21:00:00 +0000

Type Values Removed Values Added
Description Anchor is a framework providing several convenient developer tools for writing Solana programs. From 1.0.0 to before 1.0.2, an logic error causes anchor programs to accept any program id when requiring the system program id, causing false assumptions resulting in potential arbitrary cpi in programs that invoke system program instructions. In the TryFrom<&'a AccountInfo<'a>> implementation for Program<'a, T>, the id of T is compared with Pubkey::default() to check whether anchor should allow any executable account, or a specific account, because when no T is supplied, T defaults to (), which implements Id::id() by returning Pubkey::default(). This results in T = () and T = System (which has Pubkey::default() as the id) having the same behavior, both allow any executable account. Programs built with anchor assume that the anchor runtime verifies passed in programs of type Program<'a, System> are in fact the system program. This false assumption can lead to arbitrary CPI or payment bypassing when programs try making CPI calls to the system program using the passed in system program due to the fact that the attacker can pass in any program instead of the system program. This vulnerability is fixed in 1.0.2.
Title Anchor: Program<'info, System> is not properly validated
Weaknesses CWE-20
References
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-28T13:05:18.637Z

Reserved: 2026-05-08T20:08:17.210Z

Link: CVE-2026-45137

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-27T21:16:18.670

Modified: 2026-05-28T14:16:22.163

Link: CVE-2026-45137

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T22:30:35Z

Weaknesses