MAL-2024-3802

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/usaa-native-bridge/MAL-2024-3802.json
JSON Data
https://api.test.osv.dev/v1/vulns/MAL-2024-3802
Published
2024-06-25T13:18:27Z
Modified
2024-10-24T01:01:57Z
Summary
Malicious code in usaa-native-bridge (npm)
Details

-= Per source details. Do not edit below this line.=-

Database specific
{
    "malicious-packages-origins": [
        {
            "sha256": "0fbb27ce360637f3c02cded40a358dd26db18978d89d0a66ec65512c772f4def",
            "import_time": "2024-06-28T02:46:20.147403882Z",
            "versions": [
                "10.2.3",
                "10.1.2",
                "10.2.2",
                "10.1.1",
                "1.0.1",
                "1.0.2",
                "1.1.2",
                "10.2.4"
            ],
            "id": "RLMA-2024-02567",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:18:27Z"
        },
        {
            "sha256": "053394cce8532fff7d7b7749b635121a5a6d05fcfad764f2ab863351abfe9fe8",
            "import_time": "2024-10-24T00:58:30.322608482Z",
            "id": "RLUA-2024-07511",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T13:41:03Z"
        }
    ]
}
References
Credits

Affected packages

npm / usaa-native-bridge

Package

Affected ranges

Affected versions

1.*

1.0.1
1.0.2
1.1.2

10.*

10.1.1
10.1.2
10.2.2
10.2.3
10.2.4