MAL-2024-10578

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/adanbu/MAL-2024-10578.json
JSON Data
https://api.test.osv.dev/v1/vulns/MAL-2024-10578
Published
2024-11-12T03:26:14Z
Modified
2024-11-12T03:26:14Z
Summary
Malicious code in adanbu (PyPI)
Details

-= Per source details. Do not edit below this line.=-

Source: ossf-package-analysis (cd041a7ba2b7bfa8d6897be17e6506af4f85aeb346b864efca174b561d3189b0)

The OpenSSF Package Analysis project identified 'adanbu' @ 92.6 (pypi) as malicious.

It is considered malicious because:

  • The package communicates with a domain associated with malicious activity.
Database specific
{
    "malicious-packages-origins": [
        {
            "modified_time": "2024-11-12T03:26:14Z",
            "import_time": "2024-11-12T03:35:54.246635055Z",
            "versions": [
                "92.6"
            ],
            "source": "ossf-package-analysis",
            "sha256": "cd041a7ba2b7bfa8d6897be17e6506af4f85aeb346b864efca174b561d3189b0"
        }
    ]
}
References
Credits

Affected packages

PyPI / adanbu

Package

Affected ranges

Affected versions

92.*

92.6